From owner-freebsd-security Mon Jul 8 14:22:59 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0A80E37B400 for ; Mon, 8 Jul 2002 14:22:58 -0700 (PDT) Received: from kobold.compt.com (TBextgw.compt.com [209.115.146.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 447A643E4A for ; Mon, 8 Jul 2002 14:22:57 -0700 (PDT) (envelope-from klaus@kobold.compt.com) Date: Mon, 8 Jul 2002 17:22:51 -0400 From: Klaus Steden To: Peter Pentchev Cc: twig les , "Dalin S. Owen" , Laurence Brockman , security@FreeBSD.ORG Subject: Re: hiding OS name Message-ID: <20020708172251.K13139@cthulu.compt.com> References: <20020708111122.A33379@nexusxi.com> <20020708175214.31781.qmail@web10104.mail.yahoo.com> <20020708141342.G13139@cthulu.compt.com> <20020708183726.GA363@straylight.oblivion.bg> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020708183726.GA363@straylight.oblivion.bg>; from roam@ringlet.net on Mon, Jul 08, 2002 at 09:37:26PM +0300 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > > I know I'm going to regret posting in this thread, but so be it :) > > Does your friend know that, unlikely as it is made by modern ingress and > egress routing practices, IP spoofing is still not quite ruled out? > Will your friend's portsentry setup happily blackhole e.g. his ISP's > nameserver, or the root nameservers, or www.cnn.com's IP addresses, > simply because somebody found a way to send a TCP SYN packet with a > forged source address to e.g. your friend's machine's port 3? :) > That's his problem, though, not mine. :> Klaus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message