From owner-freebsd-hackers  Thu Jun 11 11:11:29 1998
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id LAA16696
          for freebsd-hackers-outgoing; Thu, 11 Jun 1998 11:11:29 -0700 (PDT)
          (envelope-from owner-freebsd-hackers@FreeBSD.ORG)
Received: from fledge.watson.org (root@COPLAND.CODA.CS.CMU.EDU [128.2.222.48])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA16612
          for <hackers@FreeBSD.ORG>; Thu, 11 Jun 1998 11:10:15 -0700 (PDT)
          (envelope-from robert@cyrus.watson.org)
Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.8.8/8.8.8) with SMTP id OAA01304;
	Thu, 11 Jun 1998 14:10:11 -0400 (EDT)
Date: Thu, 11 Jun 1998 14:10:11 -0400 (EDT)
From: Robert Watson <robert@cyrus.watson.org>
X-Sender: robert@fledge.watson.org
Reply-To: Robert Watson <robert+freebsd@cyrus.watson.org>
To: IBS / Andre Oppermann <andre@pipeline.ch>
cc: hackers@FreeBSD.ORG
Subject: Re: [Fwd: Secure Ping 1.0]
In-Reply-To: <3580168C.ED1F4831@pipeline.ch>
Message-ID: <Pine.BSF.3.96.980611140348.378J-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Thu, 11 Jun 1998, IBS / Andre Oppermann wrote:

> This looks promising ;-)

Personally, I was under-impressed.  This doesn't stop anyone from writing
a tiny program that sends 64k UDP packets to deny service.  Or using any
number of simple network utilities to generate denial of service problems. 
Just to name a few that allow for abuse -- dig, nslookup, sendmail,
telnet, finger, lynx, netscape (or maybe that one is too heavy-weight? :).

Especially if you use the situation he describes where a bunch of ping
processes are running.

I'm not sure we gain anything from this situation, although the signal
semantics arrangement that results in the sigalarm arrangement should be
addressed, of course (if it hasn't been already).

  Robert N Watson 

Carnegie Mellon University            http://www.cmu.edu/
TIS Labs at Network Associates, Inc.  http://www.tis.com/
SafePort Network Services             http://www.safeport.com/
robert@fledge.watson.org              http://www.watson.org/~robert/



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message