From owner-freebsd-security  Sun Aug 16 17:10:48 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id RAA10741
          for freebsd-security-outgoing; Sun, 16 Aug 1998 17:10:48 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from dumont.neoplanos.com.br (dumont.neoplanos.com.br [200.249.209.3])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA10728
          for <security@FreeBSD.ORG>; Sun, 16 Aug 1998 17:10:38 -0700 (PDT)
          (envelope-from john@neoplanos.com.br)
Received: from john (john@linha06.neoplanos.com.br [200.249.209.106])
	by dumont.neoplanos.com.br (8.8.8/8.8.5) with SMTP id VAA06652
	for <security@FreeBSD.ORG>; Sun, 16 Aug 1998 21:22:40 -0300 (EST)
Message-Id: <3.0.5.32.19980816210952.007c5b20@neoplanos.com.br>
X-Sender: john@neoplanos.com.br (Unverified)
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32)
Date: Sun, 16 Aug 1998 21:09:52 -0300
To: security@FreeBSD.ORG
From: Joao Paulo Campello <john@neoplanos.com.br>
Subject: hosts.deny/allow & ICMP Attacks
In-Reply-To: <199807281910.MAA01540@burka.rdy.com>
References: <3.0.5.32.19980728000808.007cb4f0@neoplanos.com.br>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id RAA10736
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Hi all,

#1

	Does anybody here know if there's any way to break hosts.deny/allow
protection in BSD or even Linux Systems?

#2

	Is there any filter/firewall/thing I can do for blocking ICMP Attacks?
Like ICMP Type 8 (PING) or ICMP Type 3 (UNREACH) ?!?! Ooho, sorry... I know
I can use *ifpw* to filter these packets and not to respond the PING, for
example... But in this way my incoming link would be fully filled anyway...
	So how can I filter in the router level, and be sure the PINGs will not
fill my incoming link?

Thnx for help,


        Joćo Paulo Caldas Campello
Diretor Tecnico - Neo Planos Solution Provider
	http://www.neoplanos.com.br/
IRCAdmin NetLink - Recife/PE (ICQ # ASK-ME :))


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message