From: Thor (Hammer of God) (thor@hammerofgod.com)
Date: Wed Apr 04 2007 - 18:36:02 EDT
Reject typically sends a response saying it was rejected. Drop just drops
the packet without a response.
If dropped, the user would not know if it was a firewall rule or if the
ip/port was not available - this is what those prone to hyperbole call
"true-stealth" or some such jargon.
t
----- Original Message -----
From: "Mohamed Abdel Kader" <mak.pen@gmail.com>
To: <pen-test@securityfocus.com>
Sent: Tuesday, April 03, 2007 1:07 AM
Subject: DROP or REJECT that is the question...
> All,
>
> I wanted to gather your opinions on whether firewall rules should be
> Dropped
>
> Or Rejected. To me I believe that both give away the firewall rules.
>
>
>
> What does everyone out there think?
>
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
>
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> ------------------------------------------------------------------------
>
>
>
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:41 EDT