[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] ICMP (was: daily internet traffic report)

To: hackerwacker@xxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
From: Cedric Blancher <blancher@xxxxxxxxxxxxxxxxxx>
Date: Mon, 18 Oct 2004 08:14:05 +0200

Le lun 18/10/2004 à 00:35, James Edwards a écrit :
> That is great till you want to run a server behind that firewall.

I don't see the reason why it would cause a problem, as firewall is able
to spot ICMP related to server's IP connections as well...

> The bigger picture, to me, is you gain little in security by blocking
> ICMP.

I agree there's a lot to do before bothering with ICMP errors filtering
:)


-- 
http://www.netexit.com/~sid/
PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
>> Hi! I'm your friendly neighbourhood signature virus.
>> Copy me to your signature file and help me spread!

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
  - From: james edwards

References:
- Re: [SPAM] [Full-Disclosure] Your daily internet traffic report
  - From: Willem Koenings
- [Full-Disclosure] ICMP (was: daily internet traffic report)
  - From: Frank de Wit
- Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
  - From: James Edwards
- Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
  - From: Cedric Blancher
- Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
  - From: James Edwards

Prev by Date: Re: [SPAM] Re: [Full-Disclosure] Full-Disclosure Posts
Next by Date: Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
Previous by thread: Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
Next by thread: Re: [Full-Disclosure] ICMP (was: daily internet traffic report)
Index(es):
- Date
- Thread