Jesus,
If you send a FIN packet to a host it won't return a RST packet if the port
is active, it will simply drop it. That's the whole problem. Stealth
scanners rely on sending this arbitrary FIN packet to a port and not
waiting for a response to determine that it is listening. Only if the port
is closed a RST packet is returned.
Hope this helps,
Marcel Gerardino
Seguridad de Informaci�n
CODETEL
[EMAIL PROTECTED]
PGP Fingerprint: A127 13FD 0B08 8C78 DEF5 FF3D B921 1793 E77F C660
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
