Re: mysterious/suspicious internet activity. [solved]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sat, 2020-12-05 at 21:43 -0500, Tom Horsley wrote:
> I'm no expert, but I believe the firewall can be set to utterly
> ignore things it blocks rather than sending a rejection. Generally
> this is more useful for things connected to the internet at large
> since you'll just get random probes rather than torrential attacks
> once they figure out there is something there they can try to break
> into.
> 
> Very much like the difference between ignoring spam and replying
> to it :-).

Not quite.

There's at least two schools of thought on firewalling:

1.  Ignore the connection attempt and pretend you're not there. 
However, that ideology is flawed by "not being there" would actually
generate a different kind of failure.

2.  Deny the connection attempt.  A hacker knows someone's there just
the same as the prior situation.  An accidentally misconfigured network
trying to connect to you gets error messages that guides them into
fixing up their network.

Either way, if they're trying to get *you* they'll keep on trying; if
it's just random probes trying to find anything by pot luck, they'll
still keep on trying.

Some networks are perpetually being scanned for things to break into. 
Probably all networks are, but some are better at firewalling
themselves so you don't notice.

I'm in Australia, I once got spurious connection attempts from a
government office in country behind the iron curtain.  I could be
paranoid about it, but their IP was one digit off my IP.  I'd call that
configuration error.
 
-- 
 
uname -rsvp
Linux 3.10.0-1160.6.1.el7.x86_64 #1 SMP Tue Nov 17 13:59:11 UTC 2020 x86_64
 
Boilerplate:  All unexpected mail to my mailbox is automatically deleted.
I will only get to see the messages that are posted to the mailing list.
 
_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux