Date: Thu, 28 Mar 2002 12:33:03 -0800 (PST) From: Jon DeShirley <jond@uidaho.edu> To: Moti Levy <moti@flncs.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: How can I erase my fingertips . Message-ID: <200203282033.MAA22879@harrier.csrv.uidaho.edu> In-Reply-To: <056f01c1d694$12084400$fd6e34c6@moti>
next in thread | previous in thread | raw e-mail | index | archive | help
On 28 Mar, Moti Levy wrote: > I want to stop nmap from detecting my os . If you use ipfilter, use this rule: block in quick on xl0 proto tcp all flags FUP Also, to be truly sure: block in quick all with ipopts block in quick all with short block in quick all with frag And in your kernel (if you've read the caveats in LINT) options TCP_DROP_SYNFIN These should do a reasonably good job of hiding your from NMAP scans. Of course, these don't really hide you from passive OS fingerprinting with tools like Siphon, but that's another matter entirely. --jon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200203282033.MAA22879>