Firewall Wizards mailing list archives

Re: Recent Attacks

From: Iván Arce <core.lists.firewall-wizards () core-sdi com>
Date: 16 Feb 2000 19:52:30 -0300



"Starkey, Kyle" wrote:


I don't believe that this was the total objective.  I believe (and this is
only conjecture) that their point was the actual vulnerability itself.  The
DoS and the newly created DDos attacks are VERY simple to use and widely
available.  I think the point was "Hey, check out this great piece of code
that is really easy to use and the MAJOR players on the internet are still
vulnerable."  I am hopeing it was more of a wake up call than it was
malicious, but who knows.


Hmm, its not that MAJOR players on the internet are 'still' vulnerable,
there's
really not many things you can do to protect yourself from being a
target.

At least, there's not many things to do just by yourself.
For me, if this is a wake up call as you say, its only to make people on
the
internet realize that they have responsibilities towards other users. 
And one of them is to make all possible efforts to guarantee that their
systems are not going to be used as weapons to scale attacks against
others.

None of this would happened if every ISP blocked outbound spoofed
packets,
if every MTA is configured properly to avoid spamming and relaying, if
egress filtering is in place, etc.

And lets say it, all this attacks have been known for years and have
been detected for at least months. It just pisses me off that only
after a simultaneous attack to several highly media-exposed targets
everyone suddenly realizes that the net is not and will not be a safe
place
if one doesn't care about safety.


-ivan

-- 
"Understanding. A cerebral secretion that enables one having it to know
 a house from a horse by the roof on the house,
 It's nature and laws have been exhaustively expounded by Locke,
 who rode a house, and Kant, who lived in a horse." - Ambrose Bierce


==================[ CORE Seguridad de la Informacion S.A. ]=========
Iván Arce
Presidente
PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836  B25D 207B E78E 2AD1 F65A
email: iarce () core-sdi com
http://www.core-sdi.com
Pte. Juan D. Peron 315 Piso 4 UF 17
1038 Capital Federal
Buenos Aires, Argentina.              Tel/Fax : +(54-11) 4331-5402
Casilla de Correos 877 (1000) Correo Central
=====================================================================

--- For a personal reply use iarce () core-sdi com

Current thread:

Re: Recent Attacks, (continued)
- - - Re: Recent Attacks Darren Reed (Feb 21)
    - Re: Recent Attacks Paul D. Robertson (Feb 21)
    - Re: Recent Attacks Philip J. Koenig (Feb 24)
    - Message not available
    - Re: Recent Attacks David LeBlanc (Feb 21)
    - Re: Recent Attacks Barrett G. Lyon (Feb 17)
- RE: Recent Attacks John Young (Feb 15)
- RE: Recent Attacks Starkey, Kyle (Feb 15)
  - RE: Recent Attacks Stephen Seal (Feb 17)
  - RE: Recent Attacks Lance Spitzner (Feb 17)
  - Re: Recent Attacks Frank L. Heidt (Feb 17)
  - Re: Recent Attacks Iván Arce (Feb 17)
    - Re: Recent Attacks Paul D. Robertson (Feb 19)
- Re: Recent Attacks Matthew_S_Cramer (Feb 15)
  - Re: Recent Attacks Philip J. Koenig (Feb 17)
- Re: Recent Attacks Don Kendrick (Feb 16)
  - Re: Recent Attacks Iván Arce (Feb 17)
  - Re: Recent Attacks sedwards (Feb 19)
- RE: Recent Attacks Moore, James (Feb 16)
- RE: Recent Attacks John Ross (Feb 17)
- RE: Recent Attacks Troy Henley (Feb 17)
  - Re: Recent Attacks Bennett Todd (Feb 17)

(Thread continues...)