RE: Firewall - DROP or DENY

To: debian-firewall <debian-firewall@lists.debian.org>
Subject: RE: Firewall - DROP or DENY
From: Jan Arne Fagertun <jan.a.fagertun@powel.no>
Date: Mon, 15 Apr 2002 16:05:51 +0200
Message-id: <[🔎] 977F12BD9A6C3648900F0981A5FCA25B0FD2F5@gatekeeper.powel.no>

> From: Nick Busigin [mailto:nick@xwing.org]
> 
> Is there really
> any significant benefit to using DROP vs DENY, other than costing
> potential attackers more time?

If you DENY you tell potential attackers "Yes, I'm here, but I (try to)
deny you access", and he/she may try harder. If you DROP the attacker
don't even know you are there, and there is no reason to try harder...

-- 
Jan Arne Fagertun <Jan.A.Fagertun@powel.no>,          Powel ASA, Norway
Phone: +47 73804500     Fax: +47 73804501    Direct phone: +47 73804568
NTNU => NT, Not Unix... http://www.nvg.ntnu.no/ntnu/ - better use Linux


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.

www.mimesweeper.com
**********************************************************************


-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Firewall - DROP or DENY
  - From: Joel Cartwright <joel@fireful.co.uk>
- Re: Firewall - DROP or DENY
  - From: Jan-Hendrik Palic <palic@billgotchy.de>

Prev by Date: Manage Iptables rules
Next by Date: Re: Firewall - DROP or DENY
Previous by thread: Firewall - DROP or DENY
Next by thread: Re: Firewall - DROP or DENY
Index(es):
- Date
- Thread