Le ven 28/02/2003 à 14:06, Martin Köhling a écrit : > Better use "--reject-with tcp-reset". Sure. > Quite some time ago, I had strange problems with some (broken?) mail > servers refusing to accept mail when I simply REJECTed ident connects - > apparently they didn't like the default ICMP error message > (icmp-port-unreachable, I think)... Maybe because RFC says that a SYN on a closed port must be replied with RST, and not ICMP port unreachable... -- Cédric Blancher <blancher@cartel-securite.fr> Consultant en sécurité des systèmes et réseaux - Cartel Sécurité Tél: +33 (0)1 44 06 97 87 - Fax: +33 (0)1 44 06 97 99 PGP KeyID:157E98EE FingerPrint:FA62226DA9E72FA8AECAA240008B480E157E98EE
