A modest proposal

• Previous message (by thread): SYN attack. how does it *really* work
• Next message (by thread): A modest proposal
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In message <Pine.BSI.3.93.960917171801.21768H-100000 at sidhe.memra.com>, Michael 
Dillon writes:
> 
> If it only takes 8 SYN packets to lock up a socket for 75 seconds then
> effective SYN flood attacks certainly *CAN* be launched from a dialup
> connection. And if the definition of an effective attack allows for
> intermittently shutting down a socket then effective attacks certainly
> *CAN be launched from places like Uruguay, Brazil, Indonesia and so forth.


If you can't fix this so its closer to 60,000 than 8 you're on the
wrong side of the firewall.  This is where a packet filtering router
doesn't do the trick.

Curtis

• Previous message (by thread): SYN attack. how does it *really* work
• Next message (by thread): A modest proposal
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]