Date: Tue, 17 Aug 1999 09:17:11 -0500 From: "Matt Crawford" <crawdad@fnal.gov> To: current@FreeBSD.ORG Subject: Re: Dropping connections without RST Message-ID: <199908171417.JAA02482@gungnir.fnal.gov> In-Reply-To: Your message of Mon, 16 Aug 1999 20:37:09 PDT. <199908170337.UAA10246@gndrsh.dnsmgr.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I see no point in the proposed mechanism. The scanner can still tell the difference between a port with a listener and a port with none. The only case in which the attacker is confounded would be in distinguishing a box which is down or off the net from a box which has *no* services and does not answer ping. I call that an uninteresting case. In the endless volley between attacker and defender, this would be a very feeble shot indeed. ______________________________________________________________________________ Matt Crawford crawdad@fnal.gov Fermilab "A5.1.5.2.7.1. Remove all classified and CCI boards from the COMSEC equipment, thoroughly smash them with a hammer or an ax, and scatter the pieces." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199908171417.JAA02482>