I wonder .... if it will be system with IPv6 enabled and connected directly to internet. 
There is no fw in plan 9 .... 
May be time to think about it ?

вт, 29 окт. 2019 г. в 14:27, Steve Simon <steve@quintile.net>:
re: anyone can banish ano IP address

You are quite right, not a problem for me, but not a general solution.

Ok, chmod og-w /lib/ndb/banished first.

I could then write a file server, envoked in cpurc as bootes and thus
has rights to update the files in /lib/ndb/banished/*.

The file server would have to ensure its /srv/xxx file is not accessable
by others.

This could be mounted by the network listners before they becomenone() so
they retain access. They would also need to ensure they unmount
the writable access to the banishment directory before starting their
child process (if the incomming connection is successful).

ugh. Even _if_ that would work its a real pain.

oh well, nice idea, but no bananna.

-Steve

------------------------------------------
9fans: 9fans
Permalink: https://9fans.topicbox.com/groups/9fans/Te00ed62cf5d85d9e-M4d3ca138d4a82de48a303955
Delivery options: https://9fans.topicbox.com/groups/9fans/subscription


--
С наилучшими пожеланиями
Жилкин Сергей
With best regards
Zhilkin Sergey