q6z4k
06-30-2005, 06:24 PM
Hi!
I can block ICMP echo Reply like this: echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all
Is there any way to block ACK without re-compiling the Kernel?
I writed a little app., that send's out tcp packet with SYN flag up. When Kernel will reply with SYN/ACK flag, I will send RST flag. But when I send my second packet, the kernel has allready open the connection. I know that nmap uses this type of scan, but i'm not sure how! Can it be this easy as echo 1 >.? Any ideas? Thank you!
I can block ICMP echo Reply like this: echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all
Is there any way to block ACK without re-compiling the Kernel?
I writed a little app., that send's out tcp packet with SYN flag up. When Kernel will reply with SYN/ACK flag, I will send RST flag. But when I send my second packet, the kernel has allready open the connection. I know that nmap uses this type of scan, but i'm not sure how! Can it be this easy as echo 1 >.? Any ideas? Thank you!