Firewall Wizards mailing list archives

RE: Denial of service

From: Jim Wamsley 303-673-8163 <wamsljr () coltano stortek com>
Date: Tue, 25 Aug 1998 09:51:36 -0600 (MDT)

While everyone is concerned about the external clown who is trying to stop us
from doing business, let's not forget about the internal side of the security
game. Take a little time to look around at your network and you will find
plenty of examples of Denial of Service from your own customers. And I am
not talking about the engineers who are challenging the marketing guys to
Doom or NetTrek every day at lunch. I am tallking about the applications
developers who roll out a centralized application with the client side being
interactive across the WAN, without any thought of all the major downloads
going across the same link. Or the two guys that found this really neat
backup package somewhere on the Internet, and decide they are going to back
up each other's stuff, all gazillion gig worth daily and they are on opposite
sides of the backbone. Or the obnoxious sys admin who decides to back up the
Internet servers at noon, and for some reason doesn't know about incremental
backups. (Why would anyone bother backing up a news server anyway.) Or the
guy who just learned to write scripts in TCL and writes one to go after the
same web page on the same server, every 5 seconds. For 12 hours, and let's not forget the guys in Corporate Education
with their network, with its textbook
design that some how, no matter what you do to keep it firewalled, always seems to get on the backbone. Compared to
these guys, the external guys are easy. We
know what their goals are. The internal guys are just stupid and harder to
catch, let alone 'convict'.

______________________________________________________________
[ Jim Wamsley, Network Engineering ]
[ StorageTek 2270 S. 88th St, M.S. 4380, Louisville, CO 80028 ]
[ Audible: (303) 673-8163 Logical jim_wamsley () stortek com ]
[ Beware of Strong Drink! ]
[ It may cause you to shoot at tax collectors. ]
[ And Miss!! ]
[ Lazarus Long ]
[______________________________________________________________]

Current thread:

Re: Denial of service, (continued)
- - - Re: Denial of service ICMan (Aug 19)
    - Re: Denial of service Ted Doty (Aug 23)
- Re: Denial of service Pawel Maciejewski (Aug 19)
  - Re: Denial of service Gigi Sullivan (Aug 19)
- Re: Denial of service Bennett Todd (Aug 19)
- Re: Denial of service HASSAN . KARIM (Aug 19)
- Re: Denial of service Frank de Jong (Aug 19)
- Re: Denial of service Logic Man (Aug 19)
- RE: Denial of service Randy Samos (Aug 23)
- RE: Denial of service Biggerstaff, Craig T (Aug 24)
- RE: Denial of service Jim Wamsley 303-673-8163 (Aug 25)