Solution for ICMP timestamp response in VAPT report
Linux - EnterpriseThis forum is for all items relating to using Linux in the Enterprise.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Solution for ICMP timestamp response in VAPT report
There was a vulnerability test run on our developmental server having Red Hat Enterprise Linux Server release 5.11 (Tikanga) as the OS. There is one point among others of concern here; it is to do with ICMP timestamp response. The solution suggested is:
ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
ipchains -A output -p icmp --icmp-type timestamp-reply -j DROP
When I gave the command,
ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
There was a vulnerability test run on our developmental server having Red Hat Enterprise Linux Server release 5.11 (Tikanga) as the OS. There is one point among others of concern here; it is to do with ICMP timestamp response. The solution suggested is:
ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
ipchains -A output -p icmp --icmp-type timestamp-reply -j DROP
When I gave the command,
ipchains -A input -p icmp --icmp-type timestamp-request -j DROP
it gave the message as below
-bash: ipchains: command not found
Please suggest how to go about it. Please revert with the reply to my query.
Again, you do not provide relevant details, and the answer to your question should be VERY obvious to someone who has a 'certification'. You don't tell us what 'vulnerability test' was performed, or where you got the suggested 'solution' to that problem, but the answer is very obvious:
The ipchains command isn't in your path...so find the ipchains command, and specify the full path to the executable.
Your 'solution' is VERY old, and references the ipchains command, where iptables is used currently.
Not sure what that command is actually supposed to accomplish, since it sure won't make your box more 'secure'. Especially since you've said before you're running them unsupported.
Thanks for your answer but RHEL support from Red Hat is not mandatory to run RHEL.
Regards
Yes, it is. You get 30 days free...after that you need to pay to continue to get support/patches/updates. And didn't you say before that you WERE paying for RHEL? So which is it? Also, you are STILL running a very old version of RHEL, and should update it, as has been told to you before.
And the answer given had NOTHING to do with RHEL support, did it? It involved checking the path and command. Re-read the first reply.
Sorry, this reply of mine was for your reply to the other question of mine.
ipchains command is replaced with iptables, the command worked with iptables.
Right...which could have easily been found with a small bit of research.
And you STILL ignore the fact that you are running RHEL, yet don't try to check the knowledgebase, which you are PAYING FOR ACCESS TO, with your L3 subscription. You don't even acknowledge that, and again, if you have an Red Hat 'certification', should't IPtables and basic security be part of what you learned?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.