On Sun, Oct 19, 2003 at 12:13:02PM +0800, Cameron Patrick wrote: > > Yeah, but you can do that on any given port whether it's open or not. e.g. > > cat /dev/zero | nc -u victim 12345 > > (nc in UDP mode seems to ignore "ICMP port unreachable" packets in my > testing... if it doesn't you can always use iptables to make sure it > does.) > > There's no way to /stop/ someone from sending you data, whether you want > it or not.
Sure, with UDP you're stuffed regardless. Do we really need to be shipping sarge with it listening on more (TCP) ports than necessary though? Andrew
