From owner-freebsd-security Sun Nov 23 22:08:37 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id WAA07564 for security-outgoing; Sun, 23 Nov 1997 22:08:37 -0800 (PST) (envelope-from owner-freebsd-security) Received: from gw.sut.ru (gw.sut.ru [194.190.126.49]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id WAA07552 for ; Sun, 23 Nov 1997 22:08:15 -0800 (PST) (envelope-from koala.lanck.ru!uwl@lanck.ru) Received: from lanck.ru (lanck.ru [194.226.196.66]) by gw.sut.ru (8.6.12/8.6.12) with ESMTP id AAA16497 for ; Mon, 24 Nov 1997 00:48:07 +0300 Received: by lanck.ru with UUCP id AAA27969; (8.8.5/vak/1.9) Mon, 24 Nov 1997 00:21:04 +0300 (MSK) Received: (from uwl@localhost) by koala.lanck.ru (8.8.5/8.6.12) id UAA17465; Sun, 23 Nov 1997 20:51:55 +0300 Message-ID: <19971123205155.18430@koala.lanck.ru> Date: Sun, 23 Nov 1997 20:51:55 +0300 From: Vladimir Uralsky To: freebsd-security@FreeBSD.ORG Subject: Re: ipfw workaround for syn-loop attack, FreeBSD 2.2.5-STABLE References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.79e In-Reply-To: ; from Daniel O'Callaghan on Fri, Nov 21, 1997 at 12:49:05PM +1100 X-Operating-System: Linux 2.0.29 i586 Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, Nov 21, 1997 at 12:49:05PM +1100, Daniel O'Callaghan wrote: > > Adding this to rc.firewall on FreeBSD is also a good idea. Multi-homed > > hosts require one entry per device, needless to say. > With terminal servers which have IP addresses which move from interface > to interface, the following rules are more generic: Can't understand, what's a difference between a traceroute -s 192.168.1.1 192.168.2.1 where both of them are local addresses of host, and exploit program? Why it isn't crash a 2.2.5? -- Vova.