[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: Firewall - DROP or DENY

> From: Nick Busigin [mailto:nick@xwing.org]
> Is there really
> any significant benefit to using DROP vs DENY, other than costing
> potential attackers more time?

If you DENY you tell potential attackers "Yes, I'm here, but I (try to)
deny you access", and he/she may try harder. If you DROP the attacker
don't even know you are there, and there is no reason to try harder...

Jan Arne Fagertun <Jan.A.Fagertun@powel.no>,          Powel ASA, Norway
Phone: +47 73804500     Fax: +47 73804501    Direct phone: +47 73804568
NTNU => NT, Not Unix... http://www.nvg.ntnu.no/ntnu/ - better use Linux

This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.


To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: