Date: Mon, 8 Jul 2002 14:13:42 -0400 From: Klaus Steden <klaus@compt.com> To: twig les <twigles@yahoo.com> Cc: "Dalin S. Owen" <dowen@nexusxi.com>, Laurence Brockman <laurence@fluxinc.com>, security@FreeBSD.ORG Subject: Re: hiding OS name Message-ID: <20020708141342.G13139@cthulu.compt.com> In-Reply-To: <20020708175214.31781.qmail@web10104.mail.yahoo.com>; from twigles@yahoo.com on Mon, Jul 08, 2002 at 10:52:14AM -0700 References: <20020708111122.A33379@nexusxi.com> <20020708175214.31781.qmail@web10104.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Portsentry may help (/usr/ports/security/portsentry I > believe). Won't hide the OS, but it may shut down > scans before they get that far. <shrug>, never tested > it that way. > A friend of mine runs portsentry configured to blackhole every IP that attempts to connect to a port where no server is running (in conjunction with a strict firewall); that can be done in FreeBSD without using portsentry, via the blackhole sysctl MIBs. See blackhole(4). It's not a bad means to keep people out of your machines. Klaus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020708141342.G13139>