Ippersonality

gabsik · 05-15-2006, 07:57 PM

I read on sourceforge there is a patch for iptables where you can fake the ip personality of your pc .I have a 2.6 kernel and maybe it has this patch built into the kernel it says:

Quote:

The Linux IP Personality patch adds to your Linux 2.4 kernel the ability to have different 'personalities' network wise, that is to change some characteristics of its network traffic, depending on different parameters (anything you can specify in an iptables rule: src/dst IP address, TCP or UDP port, etc.

I would like also to know how to set the window size of outgoing ack packets , to fake portscans fingerprints,to hide NAT router,to tarp worms,a link will help !
thanks !

////// · 05-16-2006, 12:56 AM

Quote:

Ippersonality (http://ippersonality.sourceforge.net) stop the
development in 2002 and has only for kernel 2.4.18.

http://lists.netfilter.org/pipermail...ry/064656.html
http://sourceforge.net/projects/ippersonality

To me it looks like it doesnt have support other kernels than 2.4, and iptables 1.2.2
It would have been nice to test it though

gabsik · 05-16-2006, 04:48 AM

All started since i was willing to stop infected microsoft machine broadcasts in my ISPs' network.Tarpit this broadcasts is still my desire .First there was labrea but afther first configurations attempts i have been discouraged to get on.Compiling kernel for patch o matic takes too long and honestly i have never booted a kernel i made.Than somewhere i read tarpit is about setting the window size of ack response from your machine to zero,and maybe you can do this just using iptables but i haven't found a valid options for this(TOS?QOS? ... maybe)... any suggestion ???