nanog mailing list archives

Re: A modest proposal

From: Curtis Villamizar <curtis () ans net>
Date: Wed, 18 Sep 1996 02:14:10 -0400


In message <Pine.BSI.3.93.960917171801.21768H-100000 () sidhe memra com>, Michael 
Dillon writes:


If it only takes 8 SYN packets to lock up a socket for 75 seconds then
effective SYN flood attacks certainly *CAN* be launched from a dialup
connection. And if the definition of an effective attack allows for
intermittently shutting down a socket then effective attacks certainly
*CAN be launched from places like Uruguay, Brazil, Indonesia and so forth.



If you can't fix this so its closer to 60,000 than 8 you're on the
wrong side of the firewall.  This is where a packet filtering router
doesn't do the trick.

Curtis
- - - - - - - - - - - - - - - - -

Current thread:

Re: A modest proposal, (continued)
- - - Re: A modest proposal Robert E. Seastrom (Sep 18)
    - Message not available
    - Re: A modest proposal Kelly J. Cooper (Sep 18)
    - Re: A modest proposal Robert E. Seastrom (Sep 17)
    - Re: A modest proposal Michael Dillon (Sep 17)
    - Re: A modest proposal Robert E. Seastrom (Sep 17)
    - Re: A modest proposal Arthur Hyun (Sep 17)
    - Re: A modest proposal Avi Freedman (Sep 17)
    - Re: A modest proposal Dima Volodin (Sep 17)
    - Re: A modest proposal Avi Freedman (Sep 17)
    - SYN attack. how does it *really* work Jonathan M. Bresler (Sep 17)
    - Re: A modest proposal Curtis Villamizar (Sep 17)
- Re: A modest proposal Daniel W. McRobb (Sep 17)
- Re: A modest proposal Perry E. Metzger (Sep 18)
- Re: A modest proposal Vadim Antonov (Sep 17)
- Re: A modest proposal Sean Donelan (Sep 17)
- Re: A modest proposal Sean Donelan (Sep 17)
  - Re: A modest proposal Michael Dillon (Sep 17)
  - Re: A modest proposal Curtis Villamizar (Sep 17)
- Re: A modest proposal Paul Ferguson (Sep 18)
- Re: A modest proposal Paul Ferguson (Sep 18)