Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
TARPIT & SuSE
  • From: Gustavo Muslera <gmuslera@xxxxxxxxxxxxxxx>
  • Date: 05 Sep 2003 22:13:05 -0300
  • Message-id: <1062810784.29071.8.camel@xxxxxxxxxxxxxxxxx>
I saw that from some time iptables have a TARPIT rule, useful for
slowing down port/vulnerabilities scans, virus tries and things like
that, but, how safe or stable is it to activate it by default for
anything not enabled earlier?

Including it in SuSEFirewall or other firewalls don't look hard, for
SuSE firewall look like just putting it in the SuSEFirewall2-custom
(probably in the fw_custom_before_denyall) will do the work, but, the
support of that rule is not in the bundled iptables (at least, not in
the 8.2 one), what is the best way to upgrade it? (of course, if its
safe to enable it)


< Previous Next >
This Thread
  • No further messages