[Openvas-discuss] Not scanning machines which don't respond to pings

Reindl Harald h.reindl at thelounge.net
Sat Aug 11 13:18:12 CEST 2012



Am 11.08.2012 11:51, schrieb Michael Meyer:
>> Ping is off for a large percentage of public IPs that yet have services exposed.
> 
> Realy? How many (in %) you think don't answer to ping? Where did you
> get this information?
> 
> Not allowing ping makes _no_ security gain. Denying ICMP is mainly
> only useful in the "Security By Obscurity" model. "Security By
> Obscurity", however, is completely useless.

but as you can see it works just in the case of OpenVAS

"Security By Obscurity" is not a good security
but it is a dmaned good ADDITIONAL security for still hardened machines

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20120811/bcc52bfa/attachment.asc>


More information about the Openvas-discuss mailing list