Bugtraq mailing list archives
Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections
From: mouse () RODENTS MONTREAL QC CA (der Mouse)
Date: Thu, 30 Dec 1999 14:00:49 -0500
[...new(?) smurf-style DoS attack...]
Prevention [...] The Internet Service Providers (ISPs) must take action to drop long ICMP packets in the backbone networks (any packet longer than 1499 bytes, at least).
This strikes me as a very bad idea. It's rather like saying, NFS can be used to attack insecure machines, so let's block NFS packets on long-haul links: yes, it's true that such attacks are possible, but the facility is useful and the *correct* thing to do is to secure the insecure machines, not break the (useful) underlying facility for everyone else. (Rather like the SSRR and LSRR IP options, though I realize *that* fight was in practice lost long ago.) der Mouse mouse () rodents montreal qc ca 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B
Current thread:
- Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections Paul Schinder (Dec 30)
- Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections Joel Jaeggli (Dec 30)
- Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections Marc Farnum Rendino (Dec 30)
- <Possible follow-ups>
- Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections der Mouse (Dec 30)