Linux Netfilter discussions
 help / color / mirror / Atom feed
* defeat fingerprint
@ 2006-03-10 18:40 Pedro Drimel Neto
  2006-03-12  2:45 ` Kevin McConnell
  0 siblings, 1 reply; 2+ messages in thread
From: Pedro Drimel Neto @ 2006-03-10 18:40 UTC (permalink / raw)
  To: netfilter

Hi all,

I'm looking for a tool that defeat fingerprint... I found ippersonality 
(http://ippersonality.sourceforge.net) but it has the patch only for kernel 
2.4.18...
I also found the fingerprint scubber but it was testes on FreeBSD and his 
funcional is like a firewall not only to defeat fingerprint...

Does iptables has this function to defeat tcp/ip stack fingerprint like nmap 
does ?

Thanks...

Regards. 



^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: defeat fingerprint
  2006-03-10 18:40 defeat fingerprint Pedro Drimel Neto
@ 2006-03-12  2:45 ` Kevin McConnell
  0 siblings, 0 replies; 2+ messages in thread
From: Kevin McConnell @ 2006-03-12  2:45 UTC (permalink / raw)
  To: netfilter

    Hello Pedro,
When you say you want a tool to defeat fingerprints, I
assume that you mean a way to hide what OS you're
using when people scan your box with a tool like nmap.
Iptables doesn't need a tool to change it's behavior,
you can just call it from the command line. Also,
there are other kernel variables that you can change
using sysctl that will also effect the way the IP
stack behaves. You have to remember that if people
really want to figure out what kind of OS you're
running, they can check out other avenues, such as
services that you might be running on your machine,
etc....  A good start is looking at the documentation
that comes with the kernel and the documentation that
comes with iptables.
HTH

--- Pedro Drimel Neto <pedrodrimel@uol.com.br> wrote:

> Hi all,
> 
> I'm looking for a tool that defeat fingerprint... I
> found ippersonality 
> (http://ippersonality.sourceforge.net) but it has
> the patch only for kernel 
> 2.4.18...
> I also found the fingerprint scubber but it was
> testes on FreeBSD and his 
> funcional is like a firewall not only to defeat
> fingerprint...
> 
> Does iptables has this function to defeat tcp/ip
> stack fingerprint like nmap 
> does ?
> 
> Thanks...
> 
> Regards. 
> 
> 
> 


Kevin C. McConnell --RHCE # 805299480800193 since July 2, 1999-- <Red Hat Certified Engineer>
Freedom in software, now freedom in life.
http://www.freestateproject.org/

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 


^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2006-03-12  2:45 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-03-10 18:40 defeat fingerprint Pedro Drimel Neto
2006-03-12  2:45 ` Kevin McConnell

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox