Paul on Tue, 23 Sep 2003 14:32:04 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Firewall Check

Magnus Hedemark wrote:

ICMP Echo ("ping") is still passing through. There is a lot of controversy over whether this is a good thing or not. IMHO, while it does open up some possibility of attack, it is still a good thing.

What about TCP pings?

I need to open up the ssh port to give scanners something else to find!

BTW, I found that my "rules" file is letting pings through by default, even though my "policy" file is set to block all traffic originating from the Internet.

ACCEPT          net             fw              icmp    8

_________________________________________________________________________ Philadelphia Linux Users Group -- Announcements - General Discussion --