Security Basics mailing list archives
RE: ICMP bs
From: "J. Oquendo" <segment () antioffline com>
Date: Mon, 8 Sep 2003 15:34:38 -0400
Ever hear of to each their own? Some people choose to enable ping's some don't. As for the statement someone mentioned about NMAP'ing without pinging, if someone is determined to find information on the site, it wouldn't make a difference if someone had to wait a day for that info. Hence NMAP allows a paranoid scan with -P0. There are cons to disabling pings there are pros as well. Why this thread is going on for so long is bizzarre maybe it should be carried on elsewhere, or maybe an extensive Google on the topic would help more. It's an opinionated action (enabling/disabling) nothing more. ======================================================================== This is a fair point, and I don't disagree with it. As I said, this method can be used, and it depends on the tool. There's no reason to use nmap, etc., when you can just have a script connect to port 80 or 25 on an IP and see if there's a response. Most of this discussion encompasses the tools used, as with pretty much any debate about what will help or not. No doubt lots of people use the above method, but many do not. I certainly agree it may cut down on the noise, but my experience has been little to none. -- Tim Greer <chatmaster () charter net> ======================================================================== -- +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ Jesus Oquendo sil @ disgraced . org sil @ antioffline . com PGP Fingerprint 39A7 24C6 A9A0 6C67 96CA 0302 F1D3 2420 851E E3D0 http://www.antioffline.com http://www.politrix.org You're free. And freedom is beautiful. And, you know, it'll take time to restore chaos and order, order out of chaos. But we will." George W. Bush Washington, D.C., April 13, 2003 --------------------------------------------------------------------------- Captus Networks Are you prepared for the next Sobig & Blaster? - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans - Precisely Define and Implement Network Security - Automatically Control P2P, IM and Spam Traffic FIND OUT NOW - FREE Vulnerability Assessment Toolkit http://www.captusnetworks.com/ads/42.htm ----------------------------------------------------------------------------
Current thread:
- RE: ICMP bs J. Oquendo (Sep 08)