Firewall Wizards mailing list archives
Re: stealth ports and IDS
From: "Paul D. Robertson" <proberts () patriot net>
Date: Thu, 3 Oct 2002 11:08:44 -0400 (EDT)
On 3 Oct 2002, James X wrote:
One stumbling box has been the idea of a stealth port. I usually operate my IDS boxes with the interfaces in stealth mode ie no IP address or stack. I do not know of a way of acheiving this using linux or netBSD etc.. and without it I would feel rather vulnerable. To help
Maybe it's just me, but how about just not putting an IP address on the interface? I doubt you can get away with not puting IP in the kernel, but I really don't know enough about how libpcap does its thing to say for sure... Paul ----------------------------------------------------------------------------- Paul D. Robertson "My statements in this message are personal opinions proberts () patriot net which may have no basis whatsoever in fact." probertson () trusecure com Director of Risk Assessment TruSecure Corporation _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- SANS Top Ten and Commercial Firewalls Gary Flynn (Oct 02)
- Re: SANS Top Ten and Commercial Firewalls H. Morrow Long (Oct 02)
- Re: SANS Top Ten and Commercial Firewalls Devdas Bhagat (Oct 02)
- stealth ports and IDS James X (Oct 03)
- Re: stealth ports and IDS Anton A. Chuvakin (Oct 03)
- Re: stealth ports and IDS Kevin Steves (Oct 03)
- Re: stealth ports and IDS Paul D. Robertson (Oct 03)
- Re: stealth ports and IDS Robert McMahon (Oct 03)
- Re: stealth ports and IDS Nilesh Chaudhari (Oct 05)
- stealth ports and IDS James X (Oct 03)
- Re: stealth ports and IDS Zen (Oct 03)
- Re: stealth ports and IDS Paul D. Robertson (Oct 03)
- Re: stealth ports and IDS Todd Underwood (Oct 03)
- Re: stealth ports and IDS Jim MacLeod (Oct 03)
- RE: stealth ports and IDS Ben Nagy (Oct 04)
- RE: stealth ports and IDS Frank Knobbe (Oct 04)
- Re: SANS Top Ten and Commercial Firewalls Paul D. Robertson (Oct 03)