On Thu, 2009-11-26 at 08:57 +0100, Per Jessen wrote: > rich...@buzzhost.co.uk wrote: > > > On Wed, 2009-11-25 at 14:04 -0500, Alex wrote: > >> > iptables -A FIREWALL -s 127.0.0.0/8 -j DROP > >> > >> Nah, use REJECT so you get that immediate satisfaction :-) > >> > >> Alex > > > > NO NO NO NO NO! > > Drop has the effect of tarpitting them :-) > > Not quite, tarpitting is the next step. > > > /Per Jessen, Zürich > Hence 'The effect', that is - to delay progress. They send SYN, no answer (but they wait for the answer) hence, has the effect. Sure, it's not as good as redirecting them to, say port 2525 where a dedicated FUAMTA is waiting, but I'm considering that :-)
- Re: well, isnt that special... Tara Natanson
- RE: well, isnt that special... R-Elists
- Re: well, isnt that special... Ned Slider
- Re: well, isnt that special... Aaron Wolfe
- Re: well, isnt that special... Ned Slider
- Re: well, isnt that special... rich...@buzzhost.co.uk
- Re: well, isnt that special... Benny Pedersen
- Re: well, isnt that special..... Alex
- Re: well, isnt that speci... rich...@buzzhost.co.uk
- Re: well, isnt that speci... Per Jessen
- Re: well, isnt that speci... rich...@buzzhost.co.uk
- Re: well, isnt that speci... Per Jessen
- Re: well, isnt that special..... rich...@buzzhost.co.uk
- Re: well, isnt that speci... Alex
- Re: well, isnt that speci... Yet Another Ninja
- [OT] Re: well, isnt that ... Alex
- RE: well, isnt that special... R-Elists
- Re: well, isnt that special... Tara Natanson
