[ale] Nmap + filtered ports
Jason Day
jason.day at gmail.com
Fri Dec 16 16:21:27 EST 2005
On 12/16/05, Jeff Hubbs <hbbs at comcast.net> wrote:
>
>
> >In other words, if I REJECT packets to, say, port 25, then to an
> >attacker running a scan it looks like I don't have a daemon listening on
> >port 25. But if I DROP packets to port 25, then he knows I have some
> >kind of firewall in place, and might think I would make a more
> >interesting target.
> >
> Er, other way around?
>
No, not according to the iptables man page. Chris Ricker summarized it
really well a few months back:
http://www.ale.org/archive/ale/ale-2005-05/msg00139.html
--
Jason Day jasonday at
http://jasonday.home.att.net worldnet dot att dot net
"Of course I'm paranoid, everyone is trying to kill me."
-- Weyoun-6, Star Trek: Deep Space 9
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Ale
mailing list