Re: Syn+Fin (Setup) And TCP RST
From: Giorgos Keramidas (keramidi@otenet.gr)
Date: 05/30/01
- Next message: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Previous message: Ying-Chieh Liao: "Re: chkrootkit"
- In reply to: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Next in thread: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Reply: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 30 May 2001 13:52:52 +0300 From: Giorgos Keramidas <keramidi@otenet.gr> To: Liran Dahan <lirandb@netvision.net.il>
On Wed, May 30, 2001 at 01:28:30AM +0200, Liran Dahan wrote:
> I checked the rules order, its ok...But something strange..
> I've added rule like: ipfw add 1 reset tcp from any to any 100-200 , and i
> have daemon running on port 110, i telneted it and i got connection refused
> after 2 secs..(even when i have TCP_RESTRICT_RST Enabled - Via sysctl and
> Kernel), But when i telneted the other ports (that arent running daemons -
> Closed ports), it took about 30 seconds till i got connection refused - or
> it was connection timeout (i did it from windows telnet).
Why do I have the strange feeling that you have PARANOID enabled in your
hosts.allow for telnet connections and some DNS server times out on you?
--giorgos
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Previous message: Ying-Chieh Liao: "Re: chkrootkit"
- In reply to: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Next in thread: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Reply: Liran Dahan: "Re: Syn+Fin (Setup) And TCP RST"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
