nanog mailing list archives
Re: ICMP Attacks???????
From: Dan Merillat <dan () merillat org>
Date: Fri, 15 Aug 1997 15:09:50 -0400
Josh Beck writes:
I think it's critical that routers be capable of logging the hardware addresses of ICMP, along with source addresses, so that these attacks can be traced across shared media at exchanges. As it is now, it's hard enough to trace it back across a backbone, but if it crosses a MAE, it's perfectly anonymous unless new techniques are around that we aren't aware of.
and TCP (Syn flooding) and UDP (pepsi.c)... an IOS port of tcpdump would probably make it a lot simpler. --Dan
Current thread:
- Re: ICMP Attacks??????? Dan Merillat (Aug 15)
- <Possible follow-ups>
- Re: ICMP Attacks??????? Danny McPherson (Aug 15)
- Re: ICMP Attacks??????? Alex.Bligh (Aug 16)
- Re: ICMP Attacks??????? Jon Lewis (Aug 16)
- Re: ICMP Attacks??????? David Ross (Aug 16)
- Re: ICMP Attacks??????? Peter E. Giza (Aug 16)
- Re: ICMP Attacks??????? Michael Dillon (Aug 16)
- Re: ICMP Attacks??????? Alex.Bligh (Aug 16)
- Re: ICMP Attacks??????? Danny McPherson (Aug 16)
- Re: ICMP Attacks??????? Vadim Antonov (Aug 17)
- Re: ICMP Attacks??????? Edward Henigin (Aug 18)
- RE: ICMP Attacks??????? Steve Carter (Aug 19)
(Thread continues...)