1 Oct
2004
1 Oct
'04
19:43
Jeffrey wrote regarding 'Re: [SLE] Hacking Question' on Fri, Oct 01 at 12:56: [...]
Indeed, but it's kinda hard not to have a root account :-O
Jeff - Who answers with "-j REJECT --reject-with icmp-host-unreachable" and now gets far fewer probes on any port.
I'm partial to "-j DROP" since it slows scanners down. It may not make a difference with one host, but I've got 64IPs to protect (which isn't a real big range, but it's big enough) and I feel like I'm doing the rest of the world a favor, too. :) My root password isn't typically blank, "admin", or "root", either, so I'm not too worried. --Danny, saving the world, one packaet at a time