D&C Lug - Home Page
Devon & Cornwall Linux Users' Group

[ Date Index ][ Thread Index ]
[ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Firewall revisted



Michael Chidley wrote:

Thanks....All my ports showed up as closed.

Should they have showed up as `Stealth`...i.e not respond at all?

Not entirely sure when nmap shows "stealth" as an outcome, seen
"filtered" a lot.

There are several schools of thought as to what you should
return to unsolicited traffic.

The pragmatists, who think having closed ports, and returning
ICMP echo requests is handy for testing, and probably RFC
compliant, and the purists who think the bad guys shouldn't even
know your computer/firewall exists unless it tries to talk to
them itself.

I wouldn't fault either, but the first is easier for the admin
to handle, especially if you have to check if your machine is
online from elsewhere ;)

--
The Mailing List for the Devon & Cornwall LUG
Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
message body to unsubscribe.


Lynx friendly