Re: blocking ports

To: martin f krafft <madduck@madduck.net>, debian-isp@lists.debian.org
Subject: Re: blocking ports
From: Russell Coker <russell@coker.com.au>
Date: Fri, 11 Jan 2002 13:00:31 +0100
Message-id: <[🔎] 20020111122210.6C61932F4A@lyta.coker.com.au>
Reply-to: Russell Coker <russell@coker.com.au>
In-reply-to: <[🔎] 20020110231451.GE19785@fishbowl.madduck.net>
References: <[🔎] 200201101537.g0AFbv312063@mail-srv1.micron.com> <[🔎] 20020110231451.GE19785@fishbowl.madduck.net>

On Fri, 11 Jan 2002 00:14, martin f krafft wrote:
> however, DENYing has the advantage of *severly* slowing any portscan,
> and because obscurity is not a security measure[1] and REJECT not being
> any safer then DENY, you are really not gaining anything...

Another point is that you may not want them to spend a lot of time scanning 
you.  If their scan involves retransmits and you are paying by the byte then 
(in theory at least) being scanned costs you a few cents more.

-- 
http://www.coker.com.au/bonnie++/     Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/       Postal SMTP/POP benchmark
http://www.coker.com.au/projects.html Projects I am working on
http://www.coker.com.au/~russell/     My home page

Reply to:

References:
- blocking ports
  - From: David Bishop <tech@bishop.dhs.org>
- Re: blocking ports
  - From: martin f krafft <madduck@madduck.net>

Prev by Date: Re: BGP / Zebra
Next by Date: HP LC2000r trouble
Previous by thread: Re: blocking ports
Next by thread: Re: blocking ports
Index(es):
- Date
- Thread