Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753838AbbGGHBg (ORCPT ); Tue, 7 Jul 2015 03:01:36 -0400 Received: from smtprelay06.ispgateway.de ([80.67.18.29]:44357 "EHLO smtprelay06.ispgateway.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752071AbbGGHBc (ORCPT ); Tue, 7 Jul 2015 03:01:32 -0400 X-Greylist: delayed 84263 seconds by postgrey-1.27 at vger.kernel.org; Tue, 07 Jul 2015 03:01:31 EDT Message-ID: <559B7943.3070807@ladisch.de> Date: Tue, 07 Jul 2015 09:01:23 +0200 From: Clemens Ladisch User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: Valdis.Kletnieks@vt.edu, Matteo Croce CC: nicolas.dichtel@6wind.com, netdev@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH v2] add stealth mode References: <21611.1436179798@turing-police.cc.vt.edu> In-Reply-To: <21611.1436179798@turing-police.cc.vt.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Df-Sender: bGludXgta2VybmVsQGNsLmRvbWFpbmZhY3Rvcnkta3VuZGUuZGU= Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 798 Lines: 20 Valdis.Kletnieks@vt.edu wrote: > On Thu, 02 Jul 2015 10:56:01 +0200, Matteo Croce said: >> Add option to disable any reply not related to a listening socket > > 2) You *do* realize that this isn't anywhere near sufficient in order > to actually make your machine "invisible", right? (Hint: What *other* > packets can be sent to a machine to provoke a response?) Even worse: if you want to pretend that the entire machine is "not there", you must make the router in front on you reply with an ICMP "destination unreachable" message. Regards, Clemens -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/