Le 12451ième jour après Epoch,
Rolf Kutz écrivait:
> * Quoting François TOURDE ([EMAIL PROTECTED]):
>
>> But I think DROP is the best way, 'cause it slow down NMAP or other
>> sniffers. Sniffers must wait packet timeout, then retry, then wait,
>> etc.
>
> Your fooling yourself. What prevents sniffers from
> sending multiple packets at once[0].
Nothing, but with or without DROP.
> And you're
> breaking the TCP-Protocol, which makes debugging
> much harder.
Ok, but I don't want somebody debug on *my* machine. It's only allowed
for me :)
--
She was good at playing abstract confusion in the same way a midget is
good at being short.
-- Clive James, on Marilyn Monroe
