Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.
I got that from shields up on grc.com. How do i configure slackware 10 to drop ping (ICMP Echo) requests. Im running firestarter and there is no way to configure that i think. Must be something command line somehwhere?
careful how you set it up, pings are necessary for a lot of things with the Internet ... so don't block em all
also that site just trys to scare people ... pings are not a vulnerability, if your scared someone might get into your computer, then go thru and secure it the right way before trying to obscure everything
Someone care to expand on the different types of ICMP message, how some of them have sysctl options to turn off and how some of them are not a problem?
is that work? .... for more info look at the wiki, theres a link to the RFC with specific info on what it is ... you can configure iptables to drop or reject or whatever certain icmp types, i myself block types 13-18 because i don't think anyone should need to ask me them
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
Some OSs uses ICMP ECHO REQUEST and ICMP ECHO REPLY for PathMTU Discovery (PMTU-D). Disabling "PING" can result in other hosts using the smallest allowable packet to communicate with you and thus significantly lower your performance while communicating to those sites.
if you want to play nice then don't disable icmp echo request, etc. But it's your choice and I never ever had any problems blocking pings.
If your isp's network is prone to bots and automated tools sweeping a netblock looking for certain ports on various machines then obviously your machine will not be a target if you block such request. You should be more concerned about blocking SYN FYN and other types of packets with thoose flags set.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
