[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 7 Jul 2015 17:24:07 +0200
From: Matteo Croce <matteo@...nwrt.org>
To: Clemens Ladisch <clemens@...isch.de>
Cc: Valdis Kletnieks <Valdis.Kletnieks@...edu>,
Nicolas Dichtel <nicolas.dichtel@...nd.com>,
netdev@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: Re: [PATCH v2] add stealth mode
2015-07-07 9:01 GMT+02:00 Clemens Ladisch <clemens@...isch.de>:
> Valdis.Kletnieks@...edu wrote:
>> On Thu, 02 Jul 2015 10:56:01 +0200, Matteo Croce said:
>>> Add option to disable any reply not related to a listening socket
>>
>> 2) You *do* realize that this isn't anywhere near sufficient in order
>> to actually make your machine "invisible", right? (Hint: What *other*
>> packets can be sent to a machine to provoke a response?)
>
> Even worse: if you want to pretend that the entire machine is "not there",
> you must make the router in front on you reply with an ICMP "destination
> unreachable" message.
You can't do sometimes, like in DSL lines where the router in front of
you is an ISP owned DSLAM
--
Matteo Croce
OpenWrt Developer
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists