Re: smurf amp nets

[Karl Denninger <karl () mcs net>]

On Sat, Jun 13, 1998 at 10:14:11AM +0200, Mikael Abrahamsson wrote:
> On Sat, 13 Jun 1998, Jared Mauch wrote:
>
> >     One other thing, it would be interesting if someone started
> > a smurf at a smurf amp.  (I'm tired, but believe that can be
> > done, but not going to think too much about it.  The loop
> > would be interesting, and require some fun intervention to fix).
>
> I think this is the way of the future when smurf amps get fixed. People
> will put these kind of things on hacked machines, sending spoofed floods
> to broadcast adresses locally. Since everybody seems to be going to
> switched nets this can create substantial amount of data.
>
> I think the only way to solve this more permanently is to remove the
> response of ICMP data to broadcast adresses in the OS. Is anyone
> preassuring for this to happen? Is there a list of OS that actually does
> respond to ICMP to broadcast adresses?

Recent FreeBSD versions have an option to disable response to a broadcast
ICMP.

--
-- 
Karl Denninger (karl () MCS Net)| MCSNet - Serving Chicagoland and Wisconsin
http://www.mcs.net/          | T1's from $600 monthly / All Lines K56Flex/DOV
                             | NEW! Corporate ISDN Prices dropped by up to 50%!
Voice: [+1 312 803-MCS1 x219]| EXCLUSIVE NEW FEATURE ON ALL PERSONAL ACCOUNTS
Fax:   [+1 312 803-4929]     | *SPAMBLOCK* Technology now included at no cost