From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Jorge# ./S" <jorge@kernel-panik.org>
Date: Wed, 19 Nov 2003 16:32:16 +0000
Subject: Re: [LARTC] Drop vs. Reject
Message-Id: <marc-lartc-106926141318709@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-106925951815943@msgid-missing>
In-Reply-To: <marc-lartc-106925951815943@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

with a reject u send a reject signal back to the origin. In case of a
DoS this generates more traffic.

wich one to use mainly depends how do u want to protect a port and what
kinds of attacks u expect to receive.

Jorge S.

On Wed, 2003-11-19 at 11:11, Guilherme Viebig wrote:
> Some say that DROP is the ideal manner to deal with non authorized requests,
> but using DROP let the atacker know the ports which are filtered. Using
> REJECT simply add one step to all proccess, sending the reject signal back
> to the oringin.
> 
> What your perspective about it?
> 
> 
> 
> 
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/