Any company that does these sort of tests should include recommendations within the report they produce.
The last time I used hping was to do what's called an idle host ping. It requires your host to be idle! To block the pings stop ICMP type traffic, fragmented packets should be stopped. An IDS system can help also if it acts on certain events. After that I would need more details. Hope this helps, plus put some pressure on your outside company to get a fuller report. -----Original Message----- From: Chad [mailto:[EMAIL PROTECTED] Sent: 02 July 2003 16:24 To: [EMAIL PROTECTED] We received a notification today, from a company that checks our network for vulnerabilities, that the web servers we host are vulnerable to HPing (http://www.hping.org/). The company stated that using this tool it is possible to ping the box via port 80 and thus open to service denial attacks(?!). Even do trace routes etc. Has anybody had any experience with this, and more importantly, how would one go about blocking this type of "ping"? Thanks! Chad ------------------------------------------------------------------------ --- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
