|
Post by marck on Oct 4, 2013 0:42:47 GMT -5
I ran a firewall test and everything is true stealth,except I had a fail because it said my firewall answered a ping. My question is if everything is stealth why would it answer a ping.? And should I even care ? I should have told you I use a Router,and windows firewall.I know the test is really on the router,but does it make any difference if the router answers the ping ?
|
|
drcard
Software Review Panel
Posts: 581
|
Post by drcard on Oct 4, 2013 8:56:19 GMT -5
Hi marck,
Such tests are designed to detect every possible flaw, new or old. Answering a ping used to be a security risk in the past because of security flaws in the TCP/IP layer of network communications (the layer that most home users use). The concept was developed that if the ping goes unanswered, then the hacker can't find the network to hack. This not answering a ping is still the "safest", but not answering pings leads to other problems with functioning of the network. The security flaws in the TCP/IP layer have been fixed long ago, so this stealth mode of protection for a home user is unnecessary. That being said, other network layers such as ICMP that are used by web servers can be compromised by malware. In these situation the response to a ping request is based upon a white/black list. It is a mixed bag out there when it comes to this topic with each company making its own decision - Google will answer pings and Microsoft will not. It is often thought that hackers find the network by pinging and then start the hack. Truth is most hackers of home systems get into systems via Trojans and don't target a specific network. In other words, they don't use pinging to find a network to hack, but rely on delivery of a back door Trojan which contacts the hacker when it has set itself up in a new system.
|
|
|
Post by marck on Oct 7, 2013 19:50:41 GMT -5
Thanks for the reply. This is the best answer I have seen and makes a lot of sense.I actually understood what you were saying. Marc.
|
|