[Pkg-utopia-maintainers] Bug#540123: is this a violation of policy since iptables is open during dhcp?

Mark Hedges hedges at scriptdolphin.com
Wed Oct 7 06:00:40 UTC 2009


> Is this a violation of policy since it forces you to have
> an open firewall during address association, or is there
> some new way to achieve what I've been trying to package
> up?

And open during the time between bringing the interface up
and running the firewall script in if-up.d.  One might argue
this is very little time, but wasn't this the Kevin Mitnick
scenario?  It seems like I should only allow the DHCP
transaction and other protocols needed by scripts in
if-pre-up.d.

Mark





More information about the Pkg-utopia-maintainers mailing list