Re: stoping net scans
On Sat, Apr 12, 2003 at 11:50:10AM -0500, José A. Guzmán wrote:
> What are you guys using to block incoming port scans?
It is not a good idea to do this, since it opens deny of service attacks a
big window. The attacker has only to spoof important ip addresses and your
firewall will happyly block them.
Also there is no gain in stopping netscans if you are not vulnerable in the
first place.
Greetings
Bernd
--
(OO) -- Bernd_Eckenfels@Wendelinusstrasse39.76646Bruchsal.de --
( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE
(O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Reply to: