Re: XP vulnerable to DoS attacks

[InfoSec News <isn () c4i org>]

Forwarded from: Dave Dittrich <dittrich () cac washington edu>

On Wed, 24 Oct 2001, InfoSec News wrote:

> http://techupdate.zdnet.com/techupdate/stories/main/0,14179,2819030,00.html
>
> By Wayne Rash
> October 19, 2001
>
> "It suffers from being very complicated," Steven Gibson says,
> trying to explain why he thinks a little-known feature of some
> operating systems could spell doom for businesses on the Internet.
> Gibson runs Gibson Research, a highly regarded Laguna Hills,
> California, security research firm. The feature is something
> called "raw sockets," and it's in Windows XP, the newest version
> of Microsoft's Windows operating system. Internet businesses could
> find their access to the world buried in a flood of nonsense
> traffic that could exclude nearly everything else.

Steve Gibson is *still* pushing "raw sockets are the devil?" Anyone
(especially journalists) who are interested in this topic had best
look into the details, not just take what Steve tells them.

Here are the results of my research, which address Steve's claims:

        http://staff.washington.edu/dittrich/misc/ddos/grc-reply.txt

--
Dave Dittrich                           Computing & Communications
dittrich () cac washington edu             University Computing Services
http://staff.washington.edu/dittrich    University of Washington

PGP key      http://staff.washington.edu/dittrich/pgpkey.txt
Fingerprint  FE 97 0C 57 08 43 F3 EB 49 A1 0C D0 8E 0C D0 BE C8 38 CC B5



-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn' in the BODY
of the mail.