The topic on my mind currently is unpriviledged ports. What is common to do
when dealing with unpriviledged ports and a firewall? If there are no
services running on them, is there a reason to lock them down? The way I
understand it, (please correct me if I'm wrong) Is a connection request will
come in to a service on a priviledged port, say 80, then the httpd will
spawn a child and reconnect back to the requestor on an unpriviledged
(random) port. I mean, you could force all traffic on unpriviledged ports
into a diferrent port with PAT or something similar, but is it necessary?
I guess I'm looking for clarification here. I'm still a bit of a neophyte
with firewalling, though I've slayed a lot of dragons up to this point in
configuration and tweaking, I just want to understand the nature of the
dragon now. Can someone clarify this for me? Thanks in Advance!