[ale] Iptables.
Adrin
haswes at mindspring.com
Mon Mar 22 19:19:26 EST 2004
I was just reading Linux Journal, April 2004. There is a article about Hidden Treasures
of Iptables.
You can download this patch from ftp.netfilter.org in /pub/patch-o-matic. You could then
edit your IPTABLES One of the coolest things I thought was a tar-pit in IPTABLES. It
allows you to set the TCP/IP connection to a zero-byte window then the only way for the
port scanner to back out is to kill the process or wait for a time-out. Just thought this
was pretty cool. Has anyone ever tried it or something like it? I would like to try it,
but my Linux box is no longer the router or in the DMZ. Maybe I will try it anyways
locally and see what happens.
Adrin
More information about the Ale
mailing list