oss-sec mailing list archives

Re: speaking of DoS, openssh and dropbear (CVE-2006-1206)

From: Eitan Adler <lists () eitanadler com>
Date: Sun, 1 Jan 2012 23:41:09 -0500

On Sun, Jan 1, 2012 at 10:54 PM, Kurt Seifried <kseifrie () redhat com> wrote:

Long term I'd like to see more work on hash cash type solutions, being able to
arbitrarily set or have a reactive system that requires increased work on the client
end to prove they are a legitimate client would help with this whole DoS/DDoS class > of problem to some degree.


But what if the attacker has a 10,000 node bot net? Wouldn't they just
abuse the victimized computers even further?



-- 
Eitan Adler

Current thread:

speaking of DoS, openssh and dropbear (CVE-2006-1206) Nico Golde (Jan 01)
- Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Solar Designer (Jan 01)
  - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Mike O'Connor (Jan 01)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Solar Designer (Jan 01)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Kurt Seifried (Jan 01)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Eitan Adler (Jan 01)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Kurt Seifried (Jan 02)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Nico Golde (Jan 02)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Solar Designer (Jan 02)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Nico Golde (Jan 03)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Solar Designer (Jan 03)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Kurt Seifried (Jan 03)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Solar Designer (Jan 11)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) David Hicks (Jan 05)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) The Fungi (Jan 05)
    - Re: speaking of DoS, openssh and dropbear (CVE-2006-1206) Kurt Seifried (Jan 05)