Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Sat 25 Oct 2014, 20:06
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Puppy 431 with firewall up, still replies to ping request
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
Page 1 of 1 Posts_count  
Author Message
Smithy


Joined: 12 Dec 2011
Posts: 448

PostPosted: Mon 23 Apr 2012, 08:34    Post_subject:  Puppy 431 with firewall up, still replies to ping request  

Ok so I went to https://www.grc.com/x/ne.dll?rh1dkyd2
to do a test on the Puppy 431 using firefox, after turning the puppy firewall on, (automatic without prompts). Here are the results.

Solicited TCP Packets: PASSED — No TCP packets were received from your system as a direct result of our attempts to elicit some response from any of the ports listed below — they are all either fully stealthed or blocked by your ISP. However . . .


Unsolicited Packets: PASSED — No Internet packets of any sort were received from your system as a side-effect of our attempts to elicit some response from any of the ports listed above. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system remained wisely silent. (Except for the fact that not all of its ports are completely stealthed as shown below.)


Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.

So it failed on pinging. Does this matter? Firefox is running under wine.
BTW the typeface looks really crappy! Like a sort of draught version...
Back to top
View user's profile Send_private_message 
Barkin


Joined: 12 Aug 2011
Posts: 729

PostPosted: Mon 23 Apr 2012, 11:22    Post_subject:  

Puppy 525 passes Gibson Ping test ...
puppy 525 passed Gibson ping test.png
Description  screengrab from https://www.grc.com/x/ne.dll?rh1dkyd2
png

 Download 
Filename  puppy 525 passed Gibson ping test.png 
Filesize  42.03 KB 
Downloaded  301 Time(s) 
Back to top
View user's profile Send_private_message 
rcrsn51


Joined: 05 Sep 2006
Posts: 9207
Location: Stratford, Ontario

PostPosted: Mon 23 Apr 2012, 12:59    Post_subject:  

Try this command to block pinging.
Code:
echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all

To make it permanent, add the line to /etc/rc.d/rc.local
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Mon 23 Apr 2012, 14:02    Post_subject:  

Hope it is okay to ask a noobish question.

Could it be the case that some ISP use pinging to determine
if I am still active using internet and if one do what is suggested
then one loose internet each 20 minutes or so? No big deal
if one get it back withing a minute but what if it takes hours
in some places where there is competition to get internet?

Being a true pessimist. Can my ISP have some rule that makes
it shut me down totally if I do this too often. Them need to ping
to be economically okay. They whole set up is that they can ping?
To keep their way of doing it is based on pinging and me making that
impossible is seen as obstruction or something.

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
Smithy


Joined: 12 Dec 2011
Posts: 448

PostPosted: Mon 23 Apr 2012, 14:24    Post_subject:  

Thanks rcrsn51,
that bit of code put into the console did the trick!

Saves all that B*****king around with Zone Alarm and stuff Smile

Nooby, I haven't had that losing connection problem with 431, but maybe now the pinging has been stopped it might..I think games sometimes need it. That's all I know, others will undoubtedly know more.
Back to top
View user's profile Send_private_message 
Bligh

Joined: 08 Jan 2006
Posts: 484
Location: California

PostPosted: Mon 23 Apr 2012, 17:02    Post_subject:  

Good question nooby, I don't know the answer, but have seen minor activity on my internet connection which I have assumed was my isp.
Cheers
Back to top
View user's profile Send_private_message 
Adagio

Joined: 06 May 2011
Posts: 126
Location: TerraAustralis

PostPosted: Tue 24 Apr 2012, 02:14    Post_subject:  

Telstra Australia uses what is known as a HEARTBEAT to check your connectivity.
If you block the heartbeat with your firewall you get disconnected.

AFAIK Telstra is the only ISP in the world to use the heartbeat.
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Tue 24 Apr 2012, 04:19    Post_subject:  

Adagio wrote:
Telstra Australia uses what is known as a HEARTBEAT to check your connectivity.
If you block the heartbeat with your firewall you get disconnected.

AFAIK Telstra is the only ISP in the world to use the heartbeat.


How can one know if that is happening by looking at netstat or something?

I know I lost connection about each 15 to 45 minutes. I don't remember.
Maybe each 30 minutes or shorter interval it where very annoying. Smile
But maybe a year ago or more so have no recall of details

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
amigo

Joined: 02 Apr 2007
Posts: 2261

PostPosted: Tue 24 Apr 2012, 04:36    Post_subject:  

Your ISP probably *pings you* to see if you are still using your temporary connection. If not, then they cut you off and let someone else use that IP address -if they have 10,000 customers they probably serve them with half that number of addresses since not everyone is connected at once.

You can avoid being shut off this way by *pinging them* every 5 minutes(or one minute). You pinging your ISP doesn't tell them anything they don't already know -the IP address you are currently using. Disabling the *answering of pings which you receive* is a way to avoid being seen by malicious traffic. If you ping your ISP often enough, they won't be pinging you to see if you are still around.
Back to top
View user's profile Send_private_message 
nooby

Joined: 29 Jun 2008
Posts: 10557
Location: SwedenEurope

PostPosted: Tue 24 Apr 2012, 11:04    Post_subject:  

Thanks sounds logical. Wish I knew their view on us pinging them?
I don't even know if Lupu 528-004 maybe already do that or not
or how to tell it to ping. How does one know how to do such things?

_________________
I use Google Search on Puppy Forum
not an ideal solution though
Back to top
View user's profile Send_private_message 
Display_posts:   Sort by:   
Page 1 of 1 Posts_count  
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
 Forum index » Off-Topic Area » Security
Jump to:  

Rules_post_cannot
Rules_reply_cannot
Rules_edit_cannot
Rules_delete_cannot
Rules_vote_cannot
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0752s ][ Queries: 13 (0.0129s) ][ GZIP on ]