Mailinglist Archive: opensuse-security (575 mails)
| < Previous | Next > |
Re: [suse-security] SMTP response without SYN ...
- From: Steffen Dettmer <steffen@xxxxxxx>
- Date: Tue, 12 Nov 2002 11:07:31 +0100
- Message-id: <20021112110731.B3622@xxxxxxxxx>
* Raymond Leach wrote on Tue, Nov 12, 2002 at 11:09 +0200:
> > Are you sure that no SMTP packet at all can reach your server?
> > Then I would wonder why there are RST packets on wire...
> >
> Yup, here's the rule for that server:
> $IPTABLES -A INPUT -i $IFACE_INET -p tcp --dport 25 -d $IP_INET_WEB1 -j
> REJECT --reject-with tcp-reset
Well, wouldn't it be possible that the "--reject-with tcp-reset"
generates the TCP RST packet?!
oki,
Steffen
--
Dieses Schreiben wurde maschinell erstellt,
es trägt daher weder Unterschrift noch Siegel.
> > Are you sure that no SMTP packet at all can reach your server?
> > Then I would wonder why there are RST packets on wire...
> >
> Yup, here's the rule for that server:
> $IPTABLES -A INPUT -i $IFACE_INET -p tcp --dport 25 -d $IP_INET_WEB1 -j
> REJECT --reject-with tcp-reset
Well, wouldn't it be possible that the "--reject-with tcp-reset"
generates the TCP RST packet?!
oki,
Steffen
--
Dieses Schreiben wurde maschinell erstellt,
es trägt daher weder Unterschrift noch Siegel.
| < Previous | Next > |