nanog mailing list archives

Re: Stream2

From: Clayton Fiske <clay () bloomcounty org>
Date: Tue, 30 Jan 2001 21:10:14 -0800


On Tue, Jan 30, 2001 at 11:06:52PM -0500, Jason Legate wrote:


Perhaps if people read the source, and compared it with the original, they
would notice that there are not many operational differences, aside from
the fact that this goes through the extra step of setting MSS, and
calculating the correct checksum.  The fact that the _all_ the packet kids
can use this, doesn't unleash a deadly new tool, merely a slightly
modified one.  There are no optimizations in this upon the original, nor
are there any real benefits.  It was merely written to produce a syn
generator that created packets with correct checksums and MSS.


Well, given that you've eliminated 2 useful attributes by which such
an attack could be identified and/or filtered, I'd say there is an
immediate benefit for the kiddies to make use of your version.

And as far as releasing the code, you could at least have broken it in
a couple of simple ways so that someone would have to have half a brain
to make it work.

-c

Current thread:

Re: Stream2 Richard A. Steenbergen (Feb 24)
- <Possible follow-ups>
- Stream2 Jason Legate (Feb 24)
  - Re: Stream2 jamie rishaw (Feb 24)
    - Re: Stream2 Henry R. Linneweh (Feb 24)
    - Re: Stream2 Shawn McMahon (Feb 24)
  - Re: Stream2 Bill Fumerola (Feb 24)
    - Re: Stream2 Hank Nussbacher (Feb 24)
    - Re: Stream2 Paul Timmins (Feb 24)
  - Message not available
    - Re: Stream2 Jason Legate (Feb 24)
    - Re: Stream2 Clayton Fiske (Feb 24)
- Re: Stream2 Steven M. Bellovin (Feb 24)
  - Re: Stream2 Alex (Feb 24)