Hello Pedro, When you say you want a tool to defeat fingerprints, I assume that you mean a way to hide what OS you're using when people scan your box with a tool like nmap. Iptables doesn't need a tool to change it's behavior, you can just call it from the command line. Also, there are other kernel variables that you can change using sysctl that will also effect the way the IP stack behaves. You have to remember that if people really want to figure out what kind of OS you're running, they can check out other avenues, such as services that you might be running on your machine, etc.... A good start is looking at the documentation that comes with the kernel and the documentation that comes with iptables. HTH --- Pedro Drimel Neto <pedrodrimel@xxxxxxxxxx> wrote: > Hi all, > > I'm looking for a tool that defeat fingerprint... I > found ippersonality > (http://ippersonality.sourceforge.net) but it has > the patch only for kernel > 2.4.18... > I also found the fingerprint scubber but it was > testes on FreeBSD and his > funcional is like a firewall not only to defeat > fingerprint... > > Does iptables has this function to defeat tcp/ip > stack fingerprint like nmap > does ? > > Thanks... > > Regards. > > > Kevin C. McConnell --RHCE # 805299480800193 since July 2, 1999-- <Red Hat Certified Engineer> Freedom in software, now freedom in life. http://www.freestateproject.org/ __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
