Date: Thu, 07 Aug 2008 15:54:30 -0400 From: kalin m <kalin@el.net> To: FreeBSD <freebsd@optiksecurite.com> Cc: freebsd-questions@freebsd.org Subject: Re: Remote host replies to SYN+FIN Message-ID: <489B52F6.6020909@el.net> In-Reply-To: <489B431A.7080209@optiksecurite.com> References: <489A8EA3.5030102@el.net> <489B3FFD.308@el.net> <489B431A.7080209@optiksecurite.com>
next in thread | previous in thread | raw e-mail | index | archive | help
i have that in.... i still get that message from nessus... maybe synproxy or something like S/SAF?! FreeBSD wrote: > kalin m a écrit : >> >> does anybody have any idea how to resolve this? >> >> thanks.. >> >> >> kalin m wrote: >>> hi all... >>> after setting up a pf rule set on one of newly installed freebsd 7 i >>> did a scan with nessus 3 on that machine >>> >>> the result i got was like this one: >>> http://www.nessus.org/plugins/index.php?view=single&id=11618 how do >>> 'fix' it using pf?... >>> >>> >>> >>> thanks... >>> >>> > Hi, > > I think that you should look at the 'scrub' directive in pf.conf. I > think that a 'scrub in all' should block that kind of malformed packets. > > Martin >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?489B52F6.6020909>