> ISS is the only app out there that prevents what ports you have open on a
> simple strobe..and its dosable...I would think a kernel patch is better
> then an external one.
>
> Does anyone else care?? Do you not care that a strobe can tell a potential
> hacker what services you have running?? You eliminate as much as possible
> for the hacker to see and he will most likely move on.
I don't care. Most of the attack robots I've seen don't bother with a strobe,
the strobe reveals the attacker. They run a set of attacks. Good ones run them
in parallel. They load code onto the target machine, they execute it, they
install themselves and they report back via irc to provide a hard to trace
back link to the owners.
Good firewalling, good security policy are getting more and more important.
Trying to hide vulnerabilities doesn't cut it now, and it won't cut it in
future. It's going to start costing large amounts of real money on all
systems too -I've now got copies of two attack robots that scan the entire
disk for credit card numbers....
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
