List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
> Probably you think ICMP is dangerous too. There are a lot of brain dead
> admins who blocks ICMP packets and they wonder why connections to some
> websites are broken or if they administrate the packet filter before a
> webserver they wonder why some user grouches they wouldn't get a
> connection to the web server.
Ever heard of Smurf or Loki?
If you allow all ICMP in you are indeed a brain-dead admin, in my opinion.
Sure, host unreachable, DF should be allowed in, but why should an
external host be able to send timestamp or subnet requests?
email@example.com mailing list