I went back and reset mine (with a psad kick) to 96,000 seconds
On Tuesday 21 August 2007 7:24:16 pm [EMAIL PROTECTED] wrote:
> You can't spoof an interactive TCP session such as SSH or SMTP.
>
> Jeff Schroeder wrote:
> > On Aug 20, 7:58 pm, Thorne Lawler <[EMAIL PROTECTED]> wrote:
> >> I'm sure there was some solid reasoning behind the default fixed value
> >> for active-response.timeout. I'd love to hear it if anyone knows what it
> >> was.
> >
> > Ever heard of the term "spoofing"? Think about if someone malicious
> > spoofed the ip addresses
> > of valid hosts and blocked them all. This would be an easy way to make
> > a server useless.
> > http://en.wikipedia.org/wiki/IP_address_spoofing
