Show all comments | Post your comment
u forgot about the ICMP reply on firewalls that can help in a DrDoS (distributed reflective denial of services) attack upon someone else when a TCP syn bit has been send with a spoofed source IP header. This makes the firewall send a TCP rst or TCP ack/syn bit to a unknown host and thus constribute in a DrDoS attack without administrators even knowing what is going on..
so switch of your ICMP reply and drop these packets on your firewall as standard policy! ;)
View Page
Show all comments
Post your comment
reply
Mail this page