Date: Tue, 8 Nov 2005 13:56:41 -0800 From: Lars Eggert <lars.eggert@netlab.nec.de> To: Marc Olzheim <marcolz@stack.nl> Cc: net@freebsd.org Subject: Re: TCP RST handling in 6.0 Message-ID: <280E31B0-BA54-404A-8CD4-2EF64F767B9A@netlab.nec.de> In-Reply-To: <20051108204603.GA2121@stack.nl> References: <E019841F-389F-4B15-942E-F30F6745ECBF@netlab.nec.de> <20051108204603.GA2121@stack.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail-1-708463057 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed On Nov 8, 2005, at 12:46, Marc Olzheim wrote: > Being on the wrong end of a distributed tcp syn flood attack atm. > on the > machine I'm mailing from, is probably enough to convince me of its > use. The change we are discussing is not protecting you from SYN floods, it is supposed to protect you from spoofed RSTs. Lars -- Lars Eggert NEC Network Laboratories --Apple-Mail-1-708463057--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?280E31B0-BA54-404A-8CD4-2EF64F767B9A>