Date: Mon, 4 Feb 2002 20:38:15 +0100 From: Krzysztof Zaraska <kzaraska@student.uci.agh.edu.pl> To: "Bart Matthaei" <bart@dreamflow.nl> Cc: martin@dc.cis.okstate.edu, freebsd-security@freebsd.org Subject: Re: Port 113 Traffic Message-ID: <20020204203815.09a893b9.kzaraska@student.uci.agh.edu.pl> In-Reply-To: <20020204202532.P34448@heresy.dreamflow.nl> References: <200202041914.g14JEiM74583@dc.cis.okstate.edu> <20020204202532.P34448@heresy.dreamflow.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 4 Feb 2002 20:25:32 +0100 "Bart Matthaei" <bart@dreamflow.nl> wrote: > You don't wanna block ident. Its trivial. If you block it, ident > requests to your machine will time out, resulting in a slow > initialization of connections like irc, to name one. Not necessarily. Just make your firewall reply to port 113 traffic with RST instead of silently dropping the packet. For the remote host it will look like you weren't running ident daemon. -- // Krzysztof Zaraska * kzaraska (at) student.uci.agh.edu.pl // Prelude IDS: http://www.prelude-ids.org/ // A dream will always triumph over reality, once it is given the chance. // -- Stanislaw Lem To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020204203815.09a893b9.kzaraska>