I am sorta on Craigs side with this one. That and my network is not the
best. If I am away from my syatem and need to access it I like to be able to
see if the box is alive. If not then it is a simple matter of calling up my
with to see if it is on. If it is on and not responding I can assume a
network issue. With no ping then it is hours on the phone with my wife who
hates computers <Bleck>
On Tue, 3 May 2005, Craig White wrote:
> On Wed, 2005-05-04 at 00:19 +0000, Jonathan Claxton wrote:
> >
> > On Tue, 3 May 2005, Major.Mikey wrote:
> >
> > > I have some questions about IPCop:
> > > 1- What do I apt-get? I tried IPCop, ipcop, IP<tab><tab>, and ip<tab><tab>
> > > None of these returned anything of use
> >
> > try googleing for it in which case www.ipcop.org will pop right out to ya.
> > :)
> >
> > > 2- Why would I want to prevent ping returns?
> >
> > If one pings a ip address and gets a response back, one can start to crack
> > crack crack crack.... welll..you get the point, it's like a very big
> > bulleyes has been painted on the PC.
> >
> > If someone were to tell ya the ip address of their internet connection
> > that does not respond to pings and you ping it, you WILL NOT get anwser
> > back at all. Now you got a choice, either spend a LOT of time and energy
> > trying to get any kind of respose or just move on since it's very unlikely
> > you are not going to be able to get thru.
> ----
> I think that this is absurd - there isn't any danger of being hacked
> because your machine responds to pings. The only danger is from things
> like DOS based upon ping/ping floods.
>
> There is no bullseye on your machine because it responds to pings.
>
> I suppose that there might be some kind of stealth program to hide what
> your machine OS is but chances are that an up to date nmap would likely
> fingerprint it anyway unless you really work it to make it appear like
> it were a Windows machine.
>
> Anyway, to answer the OP...
>
> You can check if system is alive and responding via ping. If you shut
> that off, you wouldn't get a response so you would have to resort to
> other methods to test for the presence. The posit that permitting pings
> represents a security threat is highly subjective and I surely haven't
> see anything in that answer or in any relatively current kernel that
> makes me worry about it.
>
> Craig
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss