> If you dont want port XYZ being reached. Block it. Completly. No > matter what fuxxored flag ever is set. Period. > > //pb >
Agreed, but a quick block on some of the common nmap flags on the very top of your ruleset can save you some time (right?) Esp. when somebody went mad, has a big pipe and found out about insane-nmap timeing. max
