Date: Wed, 20 Dec 2000 09:54:41 +1100 From: Nick Slager <nicks@albury.net.au> To: Ryan Masse <rmasse@mastery.ca> Cc: FreeBSD-Questions <freebsd-questions@FreeBSD.ORG> Subject: Re: security check output | kernel log Message-ID: <20001220095441.B43508@albury.net.au> In-Reply-To: <019001c0698a$41af8880$0600a8c0@Home>; from rmasse@mastery.ca on Tue, Dec 19, 2000 at 02:06:46AM -0500 References: <019001c0698a$41af8880$0600a8c0@Home>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Ryan Masse (rmasse@mastery.ca): > can anyone tell me what this is.. some sort of dos? i found it in the > outputs and have never seen it before. > > comp1.mastery.ca kernel log messages: > > icmp-response bandwidth limit 201/200 pps > > icmp-response bandwidth limit 201/200 pps > > icmp-response bandwidth limit 201/200 pps Yes, it's probably some sort of DoS, although not necessarily. There's an option in the kernel that rate limits ICMP responses. From LINT: # ICMP_BANDLIM enables icmp error response bandwidth limiting. You # typically want this option as it will help protect the machine from # D.O.S. packet attacks. # options ICMP_BANDLIM Regards, Nick -- From a Sun Microsystems bug report (#4102680): "Workaround: don't pound on the mouse like a wild monkey." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001220095441.B43508>