I personally have my firewall configured to drop pings. If they don't know you're there, you aren't a target. Granted it doesn't keep seasoned hackers off your box, but it's one more piece of security. -----Original Message----- From: Josh Huber [mailto:huber@alum.wpi.edu] Sent: Thursday, April 08, 2004 10:50 AM To: wlug@mail.wlug.org Subject: Re: [Wlug] Verizon DSL on SuSE avedis@rcn.com writes:
[...] then could surf, with download speeds up to 1.7M/s.
Just curious, is that bytes or bits? (I wasn't aware of verizon offering such a fast link)
I even got my firewall working with the new connection, but two things seems to have changed. SuSEfirewall2 was set not to accept pings, and it looks like it's still set that way, but Gibson Research's port scanning utility can ping me. The other thing is that before, I had to manually enter commands (iptables) to drop packets to port 119 to put it into "stealth" mode. Now, I don't have to do that, as it already appears stealthed. Can anyone explain either of these phenomena?
I'm not sure why you would want to drop all pings. You'll probably find that the default firewalling rules drop some kinds of ICMP packets, but there are some which are useful to keep around. (personally, I think dropping all inbound ICMP is pretty annoying when trying to diagnose network issues...) As for port 119, this appears to be the NNTP (net news) port -- why would you be running a news server I'm not sure :) -- Josh Huber _______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug