APLawrence.com -  Resources for Unix and Linux Systems, Bloggers and the self-employed

2005/05/09 p0f Passive Operating System Fingerprinting

Click here: http://lcamtuf.coredump .cx/p0f-help/. Did it identify you correctly? Most likely it did, but you'd probably be surprised to learn how. Some of it is covered at http://lcamtuf.coredump .cx/p0f/README and the author's book "Silence on the Wire" also explains what's underneath.

It would be interesting to lightly adjust Linux tcp/ip source to see what affect that would have. I wonder if those who have real reason to hide their identity have already used this to best determine their masquerading tactics.

For the rest of us, p0f could be useful for making decisions about suspect traffic (in fact, p0f has apparently been used in some intrusion detection software for just that reason). It could also be helpful in some of those mysterious network situations where something unknown on your lan is being annoying.. or when something you think you know isn't reacting as it should because it isn't what you think it is..



Got something to add? Send me email.





(OLDER)    <- More Stuff -> (NEWER)    (NEWEST)   

Printer Friendly Version

-> -> 2005/05/09 p0f Passive Operating System Fingerprinting



Increase ad revenue 50-250% with Ezoic


More Articles by

Find me on Google+

© Tony Lawrence



Kerio Connect Mailserver

Kerio Samepage

Kerio Control Firewall

Have you tried Searching this site?

Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates

This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.

Contact us