From: Jamie Riden (jamie.riden@gmail.com)
Date: Thu Apr 05 2007 - 12:00:54 EDT
On 03/04/07, Mohamed Abdel Kader <mak.pen@gmail.com> wrote:
> All,
>
> I wanted to gather your opinions on whether firewall rules should be Dropped
>
> Or Rejected. To me I believe that both give away the firewall rules.
>
>
>
> What does everyone out there think?
I agree. I don't think DROPping doesn't provides any extra security
but it can cause troubleshooting headaches, and long timeouts in some
cases, so I tend to reject instead.
cheers,
Jamie
-- Jamie Riden, CISSP / jamesr@europe.com / jamie@honeynet.org.uk UK Honeynet Project: http://www.ukhoneynet.org/ ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:41 EDT