In article <[EMAIL PROTECTED]>
[EMAIL PROTECTED] writes:
>I've noticed some strange traffic on our firewalls recently. Someone (Or
>multiple someones) are attempting to send tcp packets inbound to our
>network FROM well known ports (e.g. port 80)
Some firewalls that don't do proper connection tracking can be
bypassed that way. With a properly configured iptables firewall this
shouldn't be a problem. ipchains based firewalls are more likely to
fall victom to this trick.
Treat it the same as any other attempt to break into your systems.
--
Blars Blarson [EMAIL PROTECTED]
http://www.blars.org/blars.html
"Text is a way we cheat time." -- Patrick Nielsen Hayden
