all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Turn off logging for icmp

Add to bookmarks
Feb. 17, 2024, 7:34 a.m. | /u/Connect-Arm116

cybersecurity www.reddit.com

I am collecting traffic logs from OT environment which has lot of icmp traffic. This icmp traffic is mostly heartbeat events to check health of all components.

I am contemplating if I should drop icmp traffic from logging but I understand that I will loose any capability of detecting if attacker deploys payload which leverages icmp.

My question is to know your opinion on downside of dropping icmp traffic to save cost. What attacks ? Or in general any advise …

attacker check collecting components cybersecurity environment events health icmp logging logs lot ot environment payload traffic turn understand

Visit resource

More from www.reddit.com / cybersecurity

How much knowledge do you guys know about the industry that you work in? 5 hours ago | www.reddit.com
banking cybersecurity etc gas +8
Cisco reveals zero-day attacks used by hackers to attack government networks in major threat campaign 7 hours ago | www.reddit.com
attack attacks campaign cisco +7
Any Fortune 100 company go all in on Microsoft E5 Security Suite? 16 hours ago | www.reddit.com
all in cybersecurity defender defenders +12
Blueteam Certification like cybersecurity engineers 18 hours ago | www.reddit.com
architect blueteam certification certifications +12
Fake job interviews target developers with new Python backdoor 21 hours ago | www.reddit.com
backdoor cybersecurity developers fake +7
Passkeys: A Shattered Dream 21 hours ago | www.reddit.com
cybersecurity dream passkeys
Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software 21 hours ago | www.reddit.com
census cyberattack cybersecurity easy +4
Ukraine's military intelligence launches cyberattack against United Russia party 22 hours ago | www.reddit.com
cyberattack cybersecurity intelligence military +4
The XZ Utils Backdoor explained - Columbia University Lecture 1 day ago | www.reddit.com
cybersecurity

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cybersecurity Engineer

@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 300) non-client
View on infosec-jobs.com

Invoice Compliance Reviewer

@ AC Disaster Consulting | Fort Myers, Florida, United States - Remote
View on infosec-jobs.com

Technical Program Manager II - Compliance

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Head of U.S. Threat Intelligence / Senior Manager for Threat Intelligence

@ Moonshot | Washington, District of Columbia, United States
View on infosec-jobs.com

Customer Engineer, Security, Public Sector

@ Google | Virginia, USA; Illinois, USA
View on infosec-jobs.com
View more jobs