Security Incidents mailing list archives
Re: Recent DDoS (was Ping flood? Whats the point?)
From: perhaps () YES NO (Eivind Eklund)
Date: Fri, 11 Feb 2000 10:39:20 +0100
On Thu, Feb 10, 2000 at 12:17:24PM +1300, Kerry Baker wrote:
I think this sort of thing lends some weight to my arguement for network administrators to use ACLs to prevent spoofed packets leaving their networks. I hope the media attention will prompt some action. Due to the use of CIDR it shouldn't be too hard to do!
Cisco allegedly (I'm not into routers) has something called 'Reverse Path Lookup' that check the routing tables to see if the packets arriving should be able to get in through the interface they come through (and drop them if not.) I think CERT should do an advisory on this (being the group with the most clout); the wanton forwarding of packets hurt us all. Eivind.
Current thread:
- Re: E-Mail relay or break in?, (continued)
- Re: E-Mail relay or break in? JJ Gray (Feb 09)
- Re: E-Mail relay or break in? Graeme (Feb 09)
- Re: E-Mail relay or break in? Nathan Nichols (Feb 09)
- Re: E-Mail relay or break in? Ryan Russell (Feb 09)
- Recent DDoS Bino Gopal (Feb 08)
- Re: Recent DDoS Qmail Admin (Feb 09)
- Port 34545 jimwebb () EASYSTREET COM (Feb 09)
- Re: Recent DDoS MMS26 (Feb 09)
- Re: Recent DDoS Vanja Hrustic (Feb 09)
- Re: Recent DDoS (was Ping flood? Whats the point?) Kerry Baker (Feb 09)
- Re: Recent DDoS (was Ping flood? Whats the point?) Eivind Eklund (Feb 11)
- SSH2 Exploit? Jonathan A. Zdziarski (Feb 09)
- Re: SSH2 Exploit? Alexander Kiwerski (Feb 10)
- Re: SSH2 Exploit? Richard Trott (Feb 10)
- Re: SSH2 Exploit? Thiago/c0nd0r (Feb 11)
- Re: SSH2 Exploit? Jonathan A. Zdziarski (Feb 11)
- Re: SSH2 Exploit? Thiago/c0nd0r (Feb 11)
- Re: SSH2 Exploit? Mike Tancsa (Feb 15)
- Re: SSH2 Exploit? //Stany (Feb 16)
- Re: SSH2 Exploit? sysadmin (Feb 16)
- AdForce hitting odd ports Rick Tortorella (Feb 11)
