Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1996_4

Bugtraq archives for 4th quarter (Oct-Dec) 1996: Re: Excellent host SYN-attack fix for BSD hosts

Re: Excellent host SYN-attack fix for BSD hosts

Jeff Weisberg (jawOp.Net)
Tue, 15 Oct 1996 18:33:05 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Martin Rex: "Re: ftpd bug? Was: bin/1805: Bug in ftpd"
Previous message: D. J. Bernstein: "Re: Excellent host SYN-attack fix for BSD hosts"
Maybe in reply to: Avi Freedman: "Excellent host SYN-attack fix for BSD hosts"
Next in thread: Vern Paxson: "Re: Excellent host SYN-attack fix for BSD hosts"

Steve Kann <stevekio360.com> writes:
| 3 days of letting a program rip doesn't seem like much price to pay for
| being able to subvert a packet filter rule.  This is what has scared me
| about this solution from the outset.  Am I missing something, or are we
| setting ourselves up to exchange a DOS condition for something worse?

well, if someone is going to spend a weekend randomly guessing at 32bit
numbers, there are other attacks they could go for that are not going to
fill someone's screen/logfiles with 100 "verify failed, dropping" every
second (which would (hopefully) be noticed)



        --jeff

Next message: Martin Rex: "Re: ftpd bug? Was: bin/1805: Bug in ftpd"
Previous message: D. J. Bernstein: "Re: Excellent host SYN-attack fix for BSD hosts"
Maybe in reply to: Avi Freedman: "Excellent host SYN-attack fix for BSD hosts"
Next in thread: Vern Paxson: "Re: Excellent host SYN-attack fix for BSD hosts"