[LARTC] Drop vs. Reject
Jorge# ./S
jorge@kernel-panik.org
Wed, 19 Nov 2003 11:32:16 -0500
with a reject u send a reject signal back to the origin. In case of a
DoS this generates more traffic.
wich one to use mainly depends how do u want to protect a port and what
kinds of attacks u expect to receive.
Jorge S.
On Wed, 2003-11-19 at 11:11, Guilherme Viebig wrote:
> Some say that DROP is the ideal manner to deal with non authorized requests,
> but using DROP let the atacker know the ports which are filtered. Using
> REJECT simply add one step to all proccess, sending the reject signal back
> to the oringin.
>
> What your perspective about it?
>
>
>
>
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/