Security Incidents mailing list archives

RE: Port 113 requests?

From: Jose Nazario <jose () biocserver BIOC cwru edu>
Date: Fri, 7 Dec 2001 16:30:45 -0500 (EST)

On Fri, 7 Dec 2001, Chris Keladis wrote:

The only bad thing about 'rejecting' i can think of, is TCP/IP stack
fingerprinting of the returned RST packet.


as already said, "so what?" you're already connecting to them (to send the
mail), they know you exist and, due to the joys of passive OS
fingerprinting, they know what OS you're running typically.

nothing gained.

____________________________
jose nazario                                                 jose () cwru edu
                     PGP: 89 B0 81 DA 5B FD 7E 00  99 C3 B2 CD 48 A0 07 80
                                       PGP key ID 0xFD37F4E5 (pgp.mit.edu)


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

Re: Port 113 requests?, (continued)
- - Re: Port 113 requests? Paul Cardon (Dec 07)
  - Re: Port 113 requests? Mike Meredith (Dec 07)
  - RE: Port 113 requests? Tony Gale (Dec 07)
  - Re: Port 113 requests? Florian Weimer (Dec 07)
  - Re: Port 113 requests? Alexander Bochmann (Dec 07)
  - Re: Port 113 requests? Patrick Patterson (Dec 07)
  - Re: Port 113 requests? Paul Gear (Dec 07)
    - Thread "Port 113 requests?" Mario van Velzen (Dec 07)
  - Re: Port 113 requests? Valdis . Kletnieks (Dec 09)
- RE: Port 113 requests? Chris Keladis (Dec 07)
  - RE: Port 113 requests? Jose Nazario (Dec 07)
    - RE: Port 113 requests? Steve Stearns (Dec 07)
- RE: Port 113 requests? Brian Cervenka (Dec 07)