[geeks] ipfilter question - was:DHCP silliness
Mike Meredith
geeks at sunhelp.org
Sun Nov 25 17:51:49 CST 2001
On Sunday 25 November 2001 20:10, you wrote:
> You're quite right to think that the firewall understanding
> application- layer protocols is a Bad Thing.
Personally I'm quite happy about it. How else am I going to block
ActiveX content? It certainly shouldn't poke around at the application
layer without asking though.
> I consider that the
> cause of the problem is the ftp protocol having been designed in a
> crack-addled haze.
It *is* a very early protocol though, with the interesting possibility
of doing many transfers in parallel. But yes, it's a right pain when it
comes to firewalls, or dumb packet filters.
More information about the geeks
mailing list