-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Sat, 30 Apr 2005, Taylor, Grant wrote:
le / institutions have made political decisions to DROP ICMP traffic in an attempt to not become part of a reflected ICMP DDoS attack on someone.
just deny pings to the broadcast address and this can be eliminated, and this can be done in sysctl, does not require iptables rules and overhead.
Thanks,
Ron DuFresne
- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629
...We waste time looking for the perfect lover instead of creating the perfect love.
-Tom Robbins <Still Life With Woodpecker> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFCdBNOst+vzJSwZikRAmcBAJ4vOhlII62xQqlT3E/J8qClhzTEpwCgrw2S nzYG9/nCSrqD6gkdfonifvk= =vWVU -----END PGP SIGNATURE-----
