| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 7 Jul 2015 17:24:07 +0200 From: Matteo Croce <matteo@...nwrt.org> To: Clemens Ladisch <clemens@...isch.de> Cc: Valdis Kletnieks <Valdis.Kletnieks@...edu>, Nicolas Dichtel <nicolas.dichtel@...nd.com>, netdev@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH v2] add stealth mode 2015-07-07 9:01 GMT+02:00 Clemens Ladisch <clemens@...isch.de>: > Valdis.Kletnieks@...edu wrote: >> On Thu, 02 Jul 2015 10:56:01 +0200, Matteo Croce said: >>> Add option to disable any reply not related to a listening socket >> >> 2) You *do* realize that this isn't anywhere near sufficient in order >> to actually make your machine "invisible", right? (Hint: What *other* >> packets can be sent to a machine to provoke a response?) > > Even worse: if you want to pretend that the entire machine is "not there", > you must make the router in front on you reply with an ICMP "destination > unreachable" message. You can't do sometimes, like in DSL lines where the router in front of you is an ISP owned DSLAM -- Matteo Croce OpenWrt Developer -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists