Nmap Development: Re: TCP Resource Exhaustion Attacks

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

Re: TCP Resource Exhaustion Attacks

From: Ron <ron () skullsecurity net>
Date: Thu, 02 Oct 2008 09:37:41 -0500

Fyodor wrote:

It is only peripherally related to Nmap, but there was a lot of news
yesterday regarding vaguely described attacks on TCP services.  The
research was done by the UnicornScan folks.  I've speculated on the
details and implications here:

http://insecure.org/stf/tcp-dos-attack-explained.html

Cheers,
-F

For anybody who isn't paying attention (like me, till just now), RobertE. Lee replied to Fyodor's post, saying that, while he makes goodpoints, he isn't spot on:


http://blog.robertlee.name/2008/10/conjecture-speculation.html

Fyodor's was a good read anyways, though -- I especially like the partabout the recent spate of people announcing (supposedly) massivevulnerabilities. It IS getting pretty tiresome, as if there isn't enoughFUD being spread around these days! :)


Ron

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

By Date By Thread

Current thread:

TCP Resource Exhaustion Attacks Fyodor (Oct 02)
- Re: TCP Resource Exhaustion Attacks Michael Pattrick (Oct 02)
- Re: TCP Resource Exhaustion Attacks Ron (Oct 02)
  - Re: TCP Resource Exhaustion Attacks Fyodor (Oct 02)
    - Re: TCP Resource Exhaustion Attacks RB (Oct 02)
- Re: TCP Resource Exhaustion Attacks doug (Oct 02)
  - Re: TCP Resource Exhaustion Attacks Brandon Enright (Oct 02)
    - Re: TCP Resource Exhaustion Attacks Robert E . Lee (Oct 03)