Vulnerability Development mailing list archives
Re: FreeBSD listen()
From: djb () CR YP TO (D. J. Bernstein)
Date: Tue, 9 Nov 1999 01:11:03 -0000
CyberPsychotic writes:
But this doesn't solve the problem either.
The problems under discussion are file theft and file replacement. The protection I mentioned eliminates these problems. It would also be adequate for the OS to simply count the number of SYNs, and report this number to the server, which will give up if the number is larger than 1.
no {RETR,STORE} will be issued, and no data will be transfered, but now it just turns in plain denial of service.
All unpaid public services are vulnerable to flooding. Fixing this means deploying electronic cash and redesigning almost every Internet service from scratch. Until that's done, it's a waste of time to worry about the problem; everything you try will amount to security through obscurity. ---Dan
Current thread:
- Re: FreeBSD listen() CyberPsychotic (Oct 30)
- Re: FreeBSD listen() Vladimir Dubrovin (Nov 05)
- Re: FreeBSD listen() Sebastian (Nov 05)
- Re: FreeBSD listen() CyberPsychotic (Nov 03)
- Re: FreeBSD listen() David Schwartz (Nov 05)
- Re: FreeBSD listen() Blue Boar (Nov 05)
- Re: FreeBSD listen() Vladimir Dubrovin (Nov 05)
- <Possible follow-ups>
- Re: FreeBSD listen() D. J. Bernstein (Nov 05)
- Re: FreeBSD listen() D. J. Bernstein (Nov 08)