[IPCop-user] Security Scan "holes"

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

FWIW a nessus scan of one of my IPcop 0.1.1 (fully patched) boxes turned 
up these minor warnings.  Don't think they're worth worrying about, but 
are these "holes" also present in 1.2?

Angus

------- Included Stuff Follows -------

Warning found on port general/icmp

      The remote host answers to an ICMP timestamp
      request. This allows an attacker to know the
      date which is set on your machine.

      This may help him to defeat all your
      time based authentication protocols.

      Solution : filter out the ICMP timestamp
      requests (13), and the outgoing ICMP
      timestamp replies (14).

      Risk factor : Low
      CVE : CAN-1999-0524

[ back to the list of ports ]

Warning found on port general/tcp

      The remote host uses non-random IP IDs, that is, it is
      possible to predict the next value of the ip_id field of
      the ip packets sent by this host.

      An attacker may use this feature to determine if the remote
      host sent a packet in reply to another request. This may be
      used for portscanning and other things.

      Solution : Contact your vendor for a patch
      Risk factor : Low

--------- Included Stuff Ends ---------

[IPCop-user] Security Scan "holes"

Linux firewall distribution geared towards home and SOHO users.

[IPCop-user] Security Scan "holes"