LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise
User Name
Password
Linux - Enterprise This forum is for all items relating to using Linux in the Enterprise.

Notices


Reply
  Search this Thread
Old 11-14-2014, 03:49 AM   #1
RHCE_ran
Member
 
Registered: Oct 2013
Posts: 90

Rep: Reputation: Disabled
Solution for ICMP timestamp response in VAPT report


There was a vulnerability test run on our developmental server having Red Hat Enterprise Linux Server release 5.11 (Tikanga) as the OS. There is one point among others of concern here; it is to do with ICMP timestamp response. The solution suggested is:

ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
ipchains -A output -p icmp --icmp-type timestamp-reply -j DROP

When I gave the command,

ipchains -A input -p icmp --icmp-type timestamp-request -j DROP

it gave the message as below

-bash: ipchains: command not found

Please suggest how to go about it.

Please revert with the reply to my query.

Regards
 
Old 11-14-2014, 01:50 PM   #2
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 26,553

Rep: Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946
Quote:
Originally Posted by RHCE_ran View Post
There was a vulnerability test run on our developmental server having Red Hat Enterprise Linux Server release 5.11 (Tikanga) as the OS. There is one point among others of concern here; it is to do with ICMP timestamp response. The solution suggested is:

ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
ipchains -A output -p icmp --icmp-type timestamp-reply -j DROP

When I gave the command,

ipchains -A input -p icmp --icmp-type timestamp-request -j DROP

it gave the message as below

-bash: ipchains: command not found

Please suggest how to go about it. Please revert with the reply to my query.
Again, you do not provide relevant details, and the answer to your question should be VERY obvious to someone who has a 'certification'. You don't tell us what 'vulnerability test' was performed, or where you got the suggested 'solution' to that problem, but the answer is very obvious:
  • The ipchains command isn't in your path...so find the ipchains command, and specify the full path to the executable.
  • Your 'solution' is VERY old, and references the ipchains command, where iptables is used currently.
Not sure what that command is actually supposed to accomplish, since it sure won't make your box more 'secure'. Especially since you've said before you're running them unsupported.
 
Old 11-19-2014, 04:50 AM   #3
RHCE_ran
Member
 
Registered: Oct 2013
Posts: 90

Original Poster
Rep: Reputation: Disabled
Thanks for your answer but RHEL support from Red Hat is not mandatory to run RHEL.

Regards
 
Old 11-19-2014, 07:11 AM   #4
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 26,553

Rep: Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946
Quote:
Originally Posted by RHCE_ran View Post
Thanks for your answer but RHEL support from Red Hat is not mandatory to run RHEL.

Regards
Yes, it is. You get 30 days free...after that you need to pay to continue to get support/patches/updates. And didn't you say before that you WERE paying for RHEL? So which is it? Also, you are STILL running a very old version of RHEL, and should update it, as has been told to you before.

And the answer given had NOTHING to do with RHEL support, did it? It involved checking the path and command. Re-read the first reply.

Last edited by TB0ne; 11-19-2014 at 10:50 AM.
 
Old 11-20-2014, 04:28 AM   #5
RHCE_ran
Member
 
Registered: Oct 2013
Posts: 90

Original Poster
Rep: Reputation: Disabled
Sorry, this reply of mine was for your reply to the other question of mine.

ipchains command is replaced with iptables, the command worked with iptables.

Regards
 
Old 11-20-2014, 09:04 AM   #6
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 26,553

Rep: Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946Reputation: 7946
Quote:
Originally Posted by RHCE_ran View Post
Sorry, this reply of mine was for your reply to the other question of mine.
ipchains command is replaced with iptables, the command worked with iptables.
Right...which could have easily been found with a small bit of research.

And you STILL ignore the fact that you are running RHEL, yet don't try to check the knowledgebase, which you are PAYING FOR ACCESS TO, with your L3 subscription. You don't even acknowledge that, and again, if you have an Red Hat 'certification', should't IPtables and basic security be part of what you learned?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Solution for TCP timestamp response in VAPT report RHCE_ran Linux - Enterprise 3 11-14-2014 09:19 AM
ICMP response not sent to a local network ip vidyasakaran Linux - Networking 1 08-19-2010 02:27 PM
issues reg ICMP timestamp and address mask request bzlaskar Linux - Networking 0 09-12-2007 12:13 AM
fake icmp response c0lin Linux - Security 3 01-22-2005 12:06 AM
Nmap icmp timestamp iperez Linux - Newbie 3 01-15-2004 03:48 PM

LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise

All times are GMT -5. The time now is 02:25 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration