Firewall Wizards mailing list archives
Re: Stefan Savage : Hacking the TCP stack
From: "Frederick N. Chase" <fnc () mitre org>
Date: Wed, 17 May 2000 10:19:08 -0400
"R. DuFresne" wrote:
Has anyone looked at the work described here:
I've made a pass through the paper by Savage, Wetherall, Karlin and Anderson, which can be found at: http://www.cs.washington.edu/homes/savage/traceback.html. IMHO (which is not necessarily that of my employer), This is by far the most promising thing that's surfaced to date for addressing distributed denial-of-service. --It can be implemented without waiting for IPv6. --It can be phased in in a practical way. --It promises an effective solution to the first phase of traceback: finding the agent/daemon/zombies which are emitting the volumes of packets. The paper appears to be quite objective as to what can be expected. I think this should be given immediate thorough consideration by ISPs and router vendors. -Fred Chase
Current thread:
- Re: ICMP blocking on PIX .4.4.1 Jim Seymour (May 04)
- <Possible follow-ups>
- Re: ICMP blocking on PIX .4.4.1 User nawk (May 04)
- Re: ICMP blocking on PIX .4.4.1 Lorens Kockum (May 12)
- Re: ICMP blocking on PIX .4.4.1 dominik . ratajski (May 05)
- RE: ICMP blocking on PIX .4.4.1 GibsonB (May 05)
- RE: ICMP blocking on PIX .4.4.1 R. DuFresne (May 12)
- RE: ICMP blocking on PIX .4.4.1 Henry B. Tindall, Jr. (May 12)
- Stefan Savage : Hacking the TCP stack R. DuFresne (May 12)
- Re: Stefan Savage : Hacking the TCP stack Frederick N. Chase (May 17)
- Re: ICMP blocking on PIX .4.4.1 Lorens Kockum (May 12)
- RE: ICMP blocking on PIX .4.4.1 GibsonB (May 12)
- RE: ICMP blocking on PIX .4.4.1 Jeff B Boles (May 15)
- RE: ICMP blocking on PIX .4.4.1 David Ashwood (May 15)
- RE: ICMP blocking on PIX .4.4.1 GibsonB (May 15)