Nmap Development: Re: TCP Resource Exhaustion Attacks

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

Re: TCP Resource Exhaustion Attacks

From: "Michael Pattrick" <mpattrick () rhinovirus org>
Date: Thu, 2 Oct 2008 08:20:20 -0400

On Thu, Oct 2, 2008 at 7:15 AM, Fyodor <fyodor () insecure org> wrote:

It is only peripherally related to Nmap, but there was a lot of news
yesterday regarding vaguely described attacks on TCP services.  The
research was done by the UnicornScan folks.  I've speculated on the
details and implications here:

http://insecure.org/stf/tcp-dos-attack-explained.html

Cheers,
-F


I have to say, Ill be highly disappointed if you are correct. As you
pointed out, this attack is really old and if I'm not mistaken can be
resolved with the iptables limit feature.

Cheers,
Michael

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

By Date By Thread

Current thread:

TCP Resource Exhaustion Attacks Fyodor (Oct 02)
- Re: TCP Resource Exhaustion Attacks Michael Pattrick (Oct 02)
- Re: TCP Resource Exhaustion Attacks Ron (Oct 02)
  - Re: TCP Resource Exhaustion Attacks Fyodor (Oct 02)
    - Re: TCP Resource Exhaustion Attacks RB (Oct 02)
- Re: TCP Resource Exhaustion Attacks doug (Oct 02)
  - Re: TCP Resource Exhaustion Attacks Brandon Enright (Oct 02)