Re: New DoS attack

[mikael.olsson () ENTERNET SE (Mikael Olsson)]

Bluefish wrote:
> > Understanding that UDP is faster and necessary for game programmers, still I
> > can't understand the lack of security. A simple "3-way handshaking" roughly
> > reproduced by UDP method would stop all of this, right ?
>
> Which would introduce some of the "slowness" in TCP. Once you make UDP
> into something more complex, you loose some of the benefits UDP offers.

Nah. In the real-time game/app scenario you can live with a three-way
handshake in the beginning. What you want is a protocol that doesn't
slow down due to packet loss, and you still get that.

Besides, I wouldn't be the least surprised if some of the games already
do some sort of three-way handshake in the beginning to protect against
late packets and duplicates. Maybe they just need to start thinking
"true random sequence numbers / tokens are good" and we're all fine.

*shrug*

/Mike

--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK
Phone: +46 (0)660 29 92 00         Direct: +46 (0)660 29 92 05
Mobile: +46 (0)70 66 77 636        Fax: +46 (0)660 122 50
WWW: http://www.enternet.se/       E-mail: mikael.olsson () enternet se