Re: How do I stop my PC from returning a "Ping"?

From: Lanwench [MVP - Exchange] (lanwench_at_heybuddy.donotsendme.unsolicitedmail.atyahoo.com)
Date: 02/29/04 

Date: Sun, 29 Feb 2004 10:52:25 -0500

Good points.... :-)

Colin Nash [MVP] wrote:
> The "ping of death" (malformed ICMP packet causing freeze-up or
> bluescreen) hasn't been a problem since 95/NT.
>
> As for DoS attacks through sheer quantity of pings-- well the traffic
> is arriving at the host regardless of whether the host is replying to
> it. On a large enough attack it won't matter if the host is replying
> or not. It will still be flooded. Plus, when was the last time
> someone orchestrated a distributed DoS attack against a residential
> user?
>
> Since a software firewall is already being used, it would be good
> idea to make sure its doing its job. (Again, to the original poster:
> behind a router it really doesn't matter what you tell ZoneAlarm to
> do, because the router is the device that is actually assigned the
> public "Internet" IP address that the ShieldsUp site communicates
> with. Unless the router has a setting to ignore ICMP echo requests,
> you'll have to live with the minor problem. Perhaps the previous
> Internet provider was blocking this traffic before it even got to
> you.)
>
>
>
> "Lanwench [MVP - Exchange]"
> <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
> message news:eVY9wOo$DHA.2520@TK2MSFTNGP11.phx.gbl...
>> Hmmm, but "ping of death" attacks could be pretty major, should they
>> occur!
>>
>> I'd make sure inbound ICMP was blocked...along with *all* inbound
>> ports not absolutely needed (likely to be none on a home PC). I
>> don't have ZA, but I suggest to the OP that he/she look at the
>> documentation/help files. :-)
>>
>> Colin Nash [MVP] wrote:
>>> It's a fairly minor "problem." Some would not even consider it a
>>> problem at all.
>>>
>>> Are you using a router or are you directly plugged to the cable
>>> modem? If you have a router, then it is responding to the pings.
>>> The ShieldsUp site is actually talking to your router, and your PC
>>> is safely hidden behind the router.
>>>
>>> ZoneAlarm Pro, in its default configuration, does block replies to
>>> "pings" as far as I know. Unfortunately, I don't have it so I can't
>>> test that.
>>>
>>>
>>>
>>> "Bill" <NoSpam@NoSpam.Com> wrote in message
>>> news:lmn2401o13heo7e7fkus318orqr5o76a95@4ax.com...
>>>> I just reloacted to AZ from FL and switched from Road Runner to
>>>> Comcast Cable,. Now according to GRC's ShieldsUP, the only flaw in
>>>> my Windows XP Home system is that it returns anonymous pings:
>>>>
>>>> This is the error message I receive, Ping Reply: RECEIVED (FAILED),
>>>> Your system REPLIED to our Ping (ICMP Echo) requests, making it
>>>> visible on the Internet. Most personal firewalls can be configured
>>>> to block, drop, and ignore such ping requests in order to better
>>>> hide systems from hackers. This is highly recommended since "Ping"
>>>> is among the oldest and most common methods used to locate systems
>>>> prior to further exploitation.
>>>>
>>>> Interestingly enough ShieldsUp did not report this problem when I
>>>> was with RR.
>>>>
>>>> FWIW, I do have ZoneAlarm Pro, but have not fund any parameters I
>>>> can set to prevent my system from responding to these pings! How
>>>> much of a problem is this really, and what can I do to keep my
>>>> systems from responding to these pings?
>>>>
>>>> TIA, Bill

Relevant Pages

  • Re: Exiscan+clamav
    ... > # The next three settings create two lists of domains and one list of hosts. ... > # The second setting specifies domains for which your host is an incoming ... > # This router routes addresses that are not in local domains by doing a DNS ...
    (freebsd-questions)
  • Re: Networking Questions
    ... The DNS address is sent as a secondary element, mostly because there's no point for nearly all internet connections without DNS. ... The PC asks for an address by sending a DHCP request out the route to the DSL device which is either a modem or a router. ... No need for DNS until host names get involved and those hosts are on a different network segment. ...
    (comp.sys.ibm.as400.misc)
  • 2wire router configuration
    ... firewall on this router and to configure my network ... Go to Home Network -> Advanced Settings ... X Default DHCP Pool ... Configure host to use DHCP with host name sent ...
    (comp.unix.bsd.freebsd.misc)
  • Re: Problem related with Subnetting
    ... Can a host in 10.0.0.X talk with a host in ... router or gateway machine. ... The way that machines locate each other is that they send out broadcast ... ARP packets asking for information on the destination IP. ...
    (comp.unix.programmer)
  • Re: router causing ssh etc. slowdown?
    ... >> port on their public IP from a host on their own LAN. ... Let's say host A starts a TCP connection from its ... The router sends the SYN packet to ...
    (Fedora)