[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: stoping net scans

On Sat, Apr 12, 2003 at 11:50:10AM -0500, José A. Guzmán wrote:
>  What are you guys using to block incoming port scans?

It is not a good idea to do this, since it opens deny of service attacks a
big window. The attacker has only to spoof important ip addresses and your
firewall will happyly block them.

Also there is no gain in stopping netscans if you are not vulnerable in the
first place.

  (OO)      -- Bernd_Eckenfels@Wendelinusstrasse39.76646Bruchsal.de --
 ( .. )  ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
  o--o     *plush*  2048/93600EFD  eckes@irc  +497257930613  BE5-RIPE
(O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!

Reply to: