<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: Holes in the firewall of Mac OS X Leopard

Re: Holes in the firewall of Mac OS X Leopard

From: Brandon S. Allbery KF8NH <allbery_at_ece.cmu.edu>
Date: Mon, 29 Oct 2007 18:02:44 -0400

On Oct 29, 2007, at 17:49 , Juergen Schmidt wrote:

> - if you set it to "Block all incoming connections" it still allows
> access
> to certain system services. We could access the ntp daemon that is
> running
> per default over the internet. In a LAN based scenario, we were
> able to
> query the Netbios naming service even with full blocking enabled.

The firewall in Tiger, and presumably Leopard, only affects TCP
services by default (you can enable UDP filtering in the Advanced
settings). So no change here from the status quo.

-- 
brandon s. allbery [solaris,freebsd,perl,pugs,haskell] allbery_at_kf8nh.com
system administrator [openafs,heimdal,too many hats] allbery_at_ece.cmu.edu
electrical and computer engineering, carnegie mellon university    KF8NH

Received on Oct 29 2007

This message: [ Message body ]
Next message: Juergen Schmidt: "Re: Holes in the firewall of Mac OS X Leopard"
Previous message: Juergen Schmidt: "Holes in the firewall of Mac OS X Leopard"
In reply to: Juergen Schmidt: "Holes in the firewall of Mac OS X Leopard"
Next in thread: Juergen Schmidt: "Re: Holes in the firewall of Mac OS X Leopard"
Reply: Juergen Schmidt: "Re: Holes in the firewall of Mac OS X Leopard"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]