Bugtraq mailing list archives
Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections
From: alan () LXORGUK UKUU ORG UK (Alan Cox)
Date: Thu, 30 Dec 1999 02:45:14 +0000
The Internet Service Providers (ISPs) must take action to drop long ICMP packets in the backbone networks (any packet longer than 1499 bytes, at least).
This will break existing "good behaviour" legal systems and potentially disrupt MTU discovery proceedure. It isnt a feasible option without a lot of additional checks to the packet type etc, at which point with many routers the firewall rules involved turn into a performance based DoS on the core routers. Alan
Current thread:
- Re: majordomo local exploit, (continued)
- Re: majordomo local exploit Henrik Nordstrom (Dec 30)
- Fix for HP-UX automountd/autofs exploit (fwd) Doug Siebert (Dec 30)
- Re: Fix for HP-UX automountd/autofs exploit (fwd) LaMont Jones (Dec 31)
- vibackup.sh Loneguard (Dec 31)
- More info on MS99-061 (IIS escape character vulnerability) .rain.forest.puppy. (Dec 29)
- Follow UP AltaVista rudi carell (Dec 30)
- Re: majordomo local exploit Brock Sides (Dec 29)
- CERT Advisory CA-99-17 Denial-of-Service Tools Aleph One (Dec 29)
- Re: majordomo local exploit Christopher X. Candreva (Dec 29)
- The "Mac DoS Attack," a Scheme for Blocking Internet Connections John Copeland (Dec 29)
- Re: The "Mac DoS Attack," a Scheme for Blocking Internet Connections Alan Cox (Dec 29)
- Re: majordomo local exploit Olaf Kirch (Dec 29)
- Re: majordomo local exploit Spidey (Dec 29)
- Fwd: Sun Security Bulletin #00192 Bryan Blackburn (Dec 29)