[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Ping

This is rather unrelated to the technical aspects of blocking ping.

My question -- why bother?

If you have services open to the outside world, someone scanning for
vulnerable daemons is probably just going to take the popular approach -
just attempt to run the attack on all routed IP space. (recent scanning
that I've seen in my system logs certainly seems to validate this)

Why bother blocking pings, if nothing else? If blocking other traffic,
why care about pings? If you are "special" enough to be the target of a
determined/casual attacker that already knows that you are there, I'd
imagine that it is a bit late to try to look invisible.


Reply to: