From owner-freebsd-net@FreeBSD.ORG Thu Oct 18 13:26:59 2012 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 49E8FFEF for ; Thu, 18 Oct 2012 13:26:59 +0000 (UTC) (envelope-from oppermann@networx.ch) Received: from c00l3r.networx.ch (c00l3r.networx.ch [62.48.2.2]) by mx1.freebsd.org (Postfix) with ESMTP id CF4D78FC12 for ; Thu, 18 Oct 2012 13:26:58 +0000 (UTC) Received: (qmail 13207 invoked from network); 18 Oct 2012 15:05:53 -0000 Received: from c00l3r.networx.ch (HELO [127.0.0.1]) ([62.48.2.2]) (envelope-sender ) by c00l3r.networx.ch (qmail-ldap-1.03) with SMTP for ; 18 Oct 2012 15:05:53 -0000 Message-ID: <5080039E.9070202@networx.ch> Date: Thu, 18 Oct 2012 15:26:54 +0200 From: Andre Oppermann User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:16.0) Gecko/20121010 Thunderbird/16.0.1 MIME-Version: 1.0 To: h bagade Subject: Re: TCP_DROP_SYNFIN kernel option side effects?! References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Oct 2012 13:26:59 -0000 On 16.10.2012 17:27, h bagade wrote: > Hi all, > > I need to add this option to kernel in order to defeating Nmap > OS-Fingerprinting. My system is running as Web Server and also it is the > gateway on the network. > I want to know if setting this option has any side effects on other parts > of the system? Is there any situation that SYN and FIN bits are set both in > TCP packets? Is it a normal situation? SYN and FIN is not normal. Doing TCP_DROP_SYNFIN is not RFC compliant but doesn't cause any problems. -- Andre