grsecurity forums


https://forums.grsecurity.net./

stealth patch

https://forums.grsecurity.net./viewtopic.php?f=1&t=1495

Page 1 of 1

stealth patch

PostPosted: Fri Jun 30, 2006 11:13 pm
by ralphy
I see the stealth patch compiled cleanly in the kernel, however, I don't see a stealth patch for iptables itself? Are there plans for this?

PostPosted: Tue Jul 04, 2006 6:49 am
by Raf256
"stealth patch" ... ? What's that?

Stealth patch

PostPosted: Tue Jul 04, 2006 12:18 pm
by Kp
It's an iptables target that checks whether there's an application listening on the desired port. If an application is present, the target behaves like ACCEPT. If there's no application listening, the target behaves like DROP. It's useful if you want to expose a server that's not always running, but not make yourself visible to a portscan when the server's not runninig.
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/