[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: How to tell if a Linux machine is a zombie?

On Wed, 10 Jan 2007 19:26:56 -0500
Douglas Tutty <dtutty@porchlight.ca> wrote:

[snip]

> Before you assume this, you should check the netfilter docs.  If by
> default I block all outgoing and incomming connections then there's no
> way to establish an 'existing' connection in the first place.  If I
> allow outgoing http requests then the data is allowed back in without me
> opening the http port to allow incoming requests.  That's the heart of
> netfilter.
> 
> Doug.

Is this essentially what is meant by stateful packet inspection (SPI)?

Celejar

-- 
ssuds.sourceforge.net - Home of Ssuds and Ssudg, a Simple Sudoku Solver and Generator
Reply to: