On Wed, Jan 7, 2009 at 12:58 PM, Leonid Evdokimov <[email protected]> wrote:
> Norman Rasmussen wrote: > >> I (as a server admin) want to protect my server from attacks. >> > > Obfuscation != protection. > Whole protection is as secure as weakest element of it, don't forget that. > > Yes, I know, hiding IP makes flood attack a bit more complicated, but you > should never forget about social engineering: > > <malicious> Wow! I see, you use jabber. I would like to use it too, but all > ICQ transports I used were unstable. What server do you use? > <victim> icq.example.org > > malici...@botmaster$ sudo ping -f icq.example.org > ............ > By assuming the attacker knows about jabber, you've already increased his intelligence. I would primarily like to hide my transport's IP address from other ICQ clients, so that the script kiddies that don't know about jabber can't attack my server by mistake. -- - Norman Rasmussen - Email: [email protected] - Home page: http://norman.rasmussen.co.za/ --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "py-transports" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/py-transports?hl=en -~----------~----~----~----~------~----~------~--~---
