Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DROP or REJECT that is the question...

From: "Thor (Hammer of God)" <thor () hammerofgod com>
Date: Wed, 4 Apr 2007 15:36:02 -0700
Reject typically sends a response saying it was rejected. Drop just drops the packet without a response.
If dropped, the user would not know if it was a firewall rule or if the ip/port was not available - this is what those prone to hyperbole call "true-stealth" or some such jargon. 

t
----- Original Message ----- From: "Mohamed Abdel Kader" <mak.pen () gmail com> 
To: <pen-test () securityfocus com>
Sent: Tuesday, April 03, 2007 1:07 AM
Subject: DROP or REJECT that is the question...



All,
I wanted to gather your opinions on whether firewall rules should be Dropped 

Or Rejected. To me I believe that both give away the firewall rules.



What does everyone out there think?



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------






------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: