Security Basics mailing list archives

Fwd: Re[2]: how nmap can know my firewalled servers ?

From: "John Bond" <john.r.bond () gmail com>
Date: Wed, 19 Apr 2006 00:36:50 +0100

On 4/14/06, Thierry Zoller <Thierry () zoller lu> wrote:

Lots of Packetfilters answer with ICMP Administravtively Prohibited,
sometimes also leaking their internal IP address by the way..  It is a
common way to respond every IP stack I know about will understand that
message.

this is a little of topic but i read a something recently where it was
pointed out that one has to answer with Administravtively Prohibited
to indicate that the user is breaking the rules.  this gives
precedence to press charges if scanning continues.

i'm pretty sure it was this thread.
http://www.securityfocus.com/archive/105/429743

-------------------------------------------------------------------------
This List Sponsored by: Webroot

Don't leave your confidential company and customer records un-protected.
Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no
obligation. See why so many companies trust Spy Sweeper Enterprise to
eradicate spyware from their networks.
FREE 30-Day Trial of Spy Sweeper Enterprise

http://www.webroot.com/forms/enterprise_lead.php
--------------------------------------------------------------------------

Current thread:

Re: how nmap can know my firewalled servers ?, (continued)
- - Re: how nmap can know my firewalled servers ? Alice Bryson (Apr 13)
    - Re: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 13)
    - Re: how nmap can know my firewalled servers ? Gregory Boyce (Apr 17)
    - Re: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 17)
    - Re: how nmap can know my firewalled servers ? Gregory Boyce (Apr 13)
  - Re: how nmap can know my firewalled servers ? Alexey Eremenko (Apr 13)
    - Re: how nmap can know my firewalled servers ? manu (Apr 13)
    - Re: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 13)
    - Re[2]: how nmap can know my firewalled servers ? Thierry Zoller (Apr 17)
    - Re: Re[2]: how nmap can know my firewalled servers ? Arturas Zalenekas (Apr 17)
    - Message not available
    - Fwd: Re[2]: how nmap can know my firewalled servers ? John Bond (Apr 19)
    - Re: Fwd: Re[2]: how nmap can know my firewalled servers ? Ansgar -59cobalt- Wiechers (Apr 21)
- RE: how nmap can know my firewalled servers ? David Gillett (Apr 12)
- RE: how nmap can know my firewalled servers ? Burton Strauss (Apr 12)
- RE: how nmap can know my firewalled servers ? Jay Stapleton (Apr 13)
  - Re: how nmap can know my firewalled servers ? Alexey Eremenko (Apr 13)
  - MSN File Upload Monitoring fullsecure (Apr 17)
- Re: Fwd: Re[2]: how nmap can know my firewalled servers ? oldgrue (Apr 21)