nanog mailing list archives
Re: New Denial of Service Attack on Panix
From: Tim Bass <bass () linux silkroad com>
Date: Thu, 3 Oct 1996 15:08:40 -0400 (EDT)
I agree completely, but neither one is a panacea.
Actually, after the details of Random Drop is worked out including the proper queue size and the drop algorithm we have gone a long way to protecting servers from TCP SYN attacks. I have the beginnings of Random Drop working now based on Alan->Vernnon->Morris; and have been working on 'how to fire hose' the interface and make it work, with kernel print statements in every junction and reboot after reboot after kernel build, etc. ad you-know-what. The TCP fix and possibly and ICMP fix (and more work on kernel hackers part) will, I can safely predict, the faster short term solution than trying to coordinate the world into doing filters. Random Drop, is not a panacea, as you say Paul, but it is a very big, big step in the right direction and I predict that within 30 days and at the latest 60 days (because people are busy) that the SYN attack much less 'troublesome'. Tim - - - - - - - - - - - - - - - - -
Current thread:
- Re: TCP SYN attacks, (continued)
- Re: TCP SYN attacks Ran Atkinson (Oct 03)
- Re: TCP SYN attacks Zach (Oct 03)
- Re: TCP SYN attacks Avi Freedman (Oct 03)
- Re: New Denial of Service Attack on Panix Dima Volodin (Oct 02)
- Re: New Denial of Service Attack on Panix Dima Volodin (Oct 03)
- Re: New Denial of Service Attack on Panix Dima Volodin (Oct 03)
- Re: New Denial of Service Attack on Panix Avi Freedman (Oct 03)
- Re: New Denial of Service Attack on Panix Tim Bass (Oct 03)
- Re: New Denial of Service Attack on Panix Avi Freedman (Oct 03)
- Re: New Denial of Service Attack on Panix Daniel W. McRobb (Oct 03)