Re: NTP, ntpdate, and ISP-based firewall
From: Rodolfo J. Paiz (rpaiz_at_simpaticus.com)
Date: 03/05/04
- Previous message: Pinco: "Re: Firewall"
- In reply to: Bevan C. Bennett: "Re: NTP, ntpdate, and ISP-based firewall"
- Next in thread: Gertjan Vinkesteijn: "Re: NTP, ntpdate, and ISP-based firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: fedora-list@redhat.com Date: Fri, 05 Mar 2004 13:29:55 -0600
At 18:09 3/4/2004, you wrote:
>It doesn't make me more of a target to return 'ICMP prohibited' packets in
>reply to probes at prohibited ports. On the contrary it probably makes me
>less of a target because I clearly have active security measures in place.
Disagree. To most crackers, it makes you more interesting. And not
answering anything, as Joanne said, will reduce by a large amount the
number of people who take the time to decide that the silent host is worth
probing further. Also read my "Real-time blocking with Portsentry" note for
how to use portsentry, iptables, and a simple shell script to totally
banish offenders from your system.
-- Rodolfo J. Paiz rpaiz@simpaticus.com http://www.simpaticus.com -- fedora-list mailing list fedora-list@redhat.com To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
- Previous message: Pinco: "Re: Firewall"
- In reply to: Bevan C. Bennett: "Re: NTP, ntpdate, and ISP-based firewall"
- Next in thread: Gertjan Vinkesteijn: "Re: NTP, ntpdate, and ISP-based firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
Loading
