iptables a pasivni FTPS
Peter Surda
shurdeek na routehat.org
Neděle Prosinec 7 19:57:26 CET 2003
On Sun, Dec 07, 2003 at 07:54:22PM +0100, Dalibor Straka wrote:
> Ja se _domnivam_, ze sftp(115/tcp) navaze spojeni a nema zadne jine pro
> prenos dat, ale data pri stahovani tecou prave po tomto jednom spojeni.
> Zkuste tcpdump nebo iptables -j LOG pred kazdym DROP/REJECT.
A ja sa domnievam, ze keby to tak nebolo, tak ip/port na transfer by sa
posielal cez to kryptovane spojenie a router to stade nema ako vycucat.
> Hezky vecer,
> -- Dalibor Straka
S pozdravom,
Peter Surda (Shurdeek) <shurdeek na routehat.org>, ICQ 10236103, +436505122023
--
The best things in life are free, but the
expensive ones are still worth a look.
Další informace o konferenci Linux