ipfw and temporary port access

Tim ignored_mailbox at yahoo.com.au
Sun Sep 17 16:14:51 UTC 2006


On Sun, 2006-09-17 at 08:38 -0700, Noah wrote:
> I am trying to figure out how to open a port temporarily for a
> specific IP who is able to provide a proper username and password on a
> webform delivered by my web server.  After authentication is verified
> then the IP address is cached and temporarily allowed to access a
> specific port on the server.   These temporary firewall changes are to
> be handled by ipfw.

Wondering out loud:  Would any potential security flaws in the webserver
be worse than authenticating a logon by some other way?  What's it that
you're allowing/disallowing?  Something that's already quite secure,
like SSH?

-- 
(Currently running FC4, occasionally trying FC5.)

Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.




More information about the fedora-list mailing list