From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-147843-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id D30291381F3
	for <garchives@archives.gentoo.org>; Tue, 21 May 2013 16:53:12 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 5B935E08D4;
	Tue, 21 May 2013 16:53:06 +0000 (UTC)
Received: from mail-la0-f42.google.com (mail-la0-f42.google.com [209.85.215.42])
	(using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 01DA3E08C7
	for <gentoo-user@lists.gentoo.org>; Tue, 21 May 2013 16:53:04 +0000 (UTC)
Received: by mail-la0-f42.google.com with SMTP id fg20so952206lab.29
        for <gentoo-user@lists.gentoo.org>; Tue, 21 May 2013 09:53:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc:content-type;
        bh=vli5XmIH8mimgPhn/SsxfNs+SjJncH9rsVVEQGgvLbQ=;
        b=Ca1UabjC6Eq6N0uZB7sHiFwOr2nqIEuIQGWHYyXgb1mpw/oCoc+LXhgVn6Z+5RCMRL
         9VFW/5QwDI/fRcKMr2/V/YfRltuz51axxXJ4Ks5WXzMc7+zv0tymzptHYTJkBexGGlYz
         PwAmymfcU6MfmsIImrBPN2szdo2prUMKeObY8bgQ7dbPFRlcAgcweEpUHC2igPaS1Q4U
         ygQ55BvlEj+cIosgR4y7YJaui855qYAN76/K71Rxkh9UNIkXaDDnpkH+3eL0LEbvIzVF
         spNETqdZwdgdJwaaBaxU70uquEJBDXm8u6QOV1QbqbXCteSzD/siocm6GF0mdBKxPnvp
         tWdg==
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
X-Received: by 10.112.204.100 with SMTP id kx4mr2057218lbc.17.1369155183203;
 Tue, 21 May 2013 09:53:03 -0700 (PDT)
Received: by 10.114.92.35 with HTTP; Tue, 21 May 2013 09:53:03 -0700 (PDT)
In-Reply-To: <CAGWRaZZYJ40WTHPqbK2nO+i_iT82iS_OBf=qCyiRBr0B1CFjiA@mail.gmail.com>
References: <201305211211.53740.neal.p.murphy@alum.wpi.edu>
	<CAGWRaZZYJ40WTHPqbK2nO+i_iT82iS_OBf=qCyiRBr0B1CFjiA@mail.gmail.com>
Date: Tue, 21 May 2013 12:53:03 -0400
Message-ID: <CAGWRaZYxDajKK3GNhjuLkta7OTpDmzgEFKMNihV1ZWDsvBQtLg@mail.gmail.com>
Subject: [gentoo-user] Re: IPTables - Going Stateless
From: Nick Khamis <symack@gmail.com>
To: neal.p.murphy@alum.wpi.edu
Cc: gentoo-user <gentoo-user@lists.gentoo.org>
Content-Type: text/plain; charset=ISO-8859-1
X-Archives-Salt: a2dda58b-6908-4986-8b14-839bedfd54fa
X-Archives-Hash: 85855817d7d8ade5f81fa479aab19e8a

Neal,

As for the --sport flag for OUTPUT, should it not be left arbitrary?
The SSH  daemon should use unprivileged ports between 1024 and 65535.
The only daemon I know thus far that does not is NTP which is
hardwired to 123 both ways.

Thanks Guys,

Nick.