Jesus,

If you send a FIN packet to a host it won't return a RST packet if the port
is active, it will simply drop it.  That's the whole problem.  Stealth
scanners rely on sending this arbitrary FIN packet to a port and not
waiting for a response to determine that it is listening.  Only if the port
is closed a RST packet is returned.

Hope this helps,

Marcel Gerardino
Seguridad de Informaci�n
CODETEL
[EMAIL PROTECTED]
PGP Fingerprint: A127 13FD 0B08 8C78 DEF5  FF3D B921 1793 E77F C660


-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to