<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Nmap Hackers: Re: how to know scan is correct?

Re: how to know scan is correct?

From: Bennett Todd <bet_at_rahul.net>
Date: Thu, 10 Feb 2000 10:47:11 -0500

2000-02-10-01:09:22 Justin:
> That's why you have a iptables/whatever module that listens looks
> for syns to non-open ports, logs once, then filters the offending
> ip/netmask for 30 minutes or a few days if you're particularly
> fascist.

If you're going to do any such reactive firewall stuff as this, make
very sure nobody knows you're doing it; if they know you're doing
that, it's amazingly easy for them to cut you off from any or all of
the internet. Lessee, how long would it take to send SYN packets to
closed ports with source addrs forged from all the root nameservers.

-Bennett

application/pgp-signature attachment: stored

Received on Feb 10 2000

This message: [ Message body ]
Next message: Bart van Leeuwen: "Re: how to know scan is correct?"
Previous message: Simple Nomad: "Re: UDP port scanning..."
In reply to: Justin: "Re: how to know scan is correct?"
Next in thread: Justin: "Re: how to know scan is correct?"
Reply: Justin: "Re: how to know scan is correct?"
Reply: Mikael Olsson: "Re: how to know scan is correct?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos