On Tue, 03 Feb 2004 at 08:55:51AM -0500, Philipp Schulte wrote: > nmap is not a sniffer but a portscanner. It's true that nmap is slowed > down by DROP but this doesn't improve security very much and can have > some annoying side effects (i.e. timeouts with ident-lookups).
$IPTABLES -A ETH0-IN -p tcp --dport 113 -j REJECT --reject-with tcp-reset -- Phillip Hofmeister PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/key.asc | gpg --import
