Gentoo Archives: gentoo-security

From: Benjamin Jury <benjamin.jury@××××.com>
To: 'Frank Gruellich' <frank@××××××××××××.org>, gentoo-security@l.g.o
Subject: RE: [gentoo-security] firewall suggestions?
Date: Thu, 08 Jan 2004 15:14:56
> * Thomas T. Veldhouse <veldy@×××××.net> 8. Jan 04 > > Oliver Schad wrote: > > > [DROP or REJECT] > > One reason ... it slows down various scans. > > No, it doesn't. It would, if $scanner sends one SYN and wait for the > answer to it. In fact it sends you SYNs to all your ports at once and > collects answers (or not) in parallel. You extend the scan > time for one > timeout (which is nothing (~3min?) against the time to send all > requests).
If you reject the packet does it not allow you to be used for DOSing a host via a spoofed IP? -- gentoo-security@g.o mailing list


Subject Author
Re: [gentoo-security] firewall suggestions? Frank Gruellich <frank@××××××××××××.org>