Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD's Packet Filter Gains OS Fingerprinting

Posted by CowboyNeal on from the no-more-amigas-on-my-networks dept.

basilpronoun writes "The PF packet filter / firewall that comes with OpenBSD has just been improved to allow firewalling decisions to take place based not only on the source of a connection, but the operating system of that source. There are both good and evil applications, not the least of which is blocking the spam from infected Windows machines."

7 of 18 comments (clear)

  1. This is slick! by j0nkatz · · Score: 2, Funny

    Block those bastard Windows users!!!

    --
    Don't mod me, bro'!!!!
  2. Many uses by Hungus · · Score: 5, Funny

    I like this, amongst other things it will allow me to prevent non HIPAA compliant OSs from accessing my medical sites. After all how many physcians know how to spoof ethernet packets?

    Now where did I put that openBSD box?

    --
    Bad Panda! No Bamboo for you! In matters of importance ACs will not be responded to. Want to say something critical,OK
  3. Windows? SCO! by Feztaa · · Score: 4, Funny

    Even better, lets get all the BSD routers out there to implement rules to drop packets coming from a computer running any of SCO's products. That'll show 'em!

  4. Worm warning by ptaff · · Score: 2, Interesting

    Then if there is a Windows worm in the wild, all OpenBSD routers on the net can redirect the Windows traffic to windowsupdate.com ...?

    1. Re:Worm warning by pmz · · Score: 2, Insightful

      all OpenBSD routers on the net can redirect the Windows traffic to windowsupdate.com ...?

      Perhaps better would be to redirect to a warning page that takes the user to their intended website after a few seconds. Simply going to windowsupdate.com would frustrate people who consciously leave their computers unpatched for various valid reasons (Windows Update is a genuine risk in itself).

      --
      Healthcare article at Kuro5hin
  5. be nice by muirhead · · Score: 2, Interesting
    From the article:
    Or maybe I think SCO sucks sweaty monkey balls and their customers should be redirected to a web page of ranting and ravings about why they should cancel their contracts or somesuch.
    Okay, so they made a mistake, be nice.
    Don't you think that SCO's customers are suffering enough already?
    1. Re:be nice by Anonymous Coward · · Score: 2, Funny

      NO!