On Thu, 2004-03-25 at 13:59, Joe Mott wrote: > I have been searching the archived lists without any success to have the > following question answered: > > Is netfilter capable of knowing when someone is crafting SMTP (or FTP or > HTTP or ...) packets that violate RFC rules to exploit a vulnerability > in some server? As the other replies say, the short answer is no. You can do some filtering using the netfilter POM patches, like string matching, TOS, TCP flags. Regards Ray -- -- Raymond Leach <raymondl@xxxxxxxxxxxxxxxxxxxxxx> Network Support Specialist http://www.knowledgefactory.co.za "lynx -source http://www.rchq.co.za/raymondl.asc | gpg --import" Key fingerprint = 7209 A695 9EE0 E971 A9AD 00EE 8757 EE47 F06F FB28 --
Attachment:
signature.asc
Description: This is a digitally signed message part
