Bugtraq mailing list archives

Re: udp packet storms

From: smb () research att com (smb () research att com)
Date: Sun, 30 Oct 94 20:08:18 EST


         tcp discard allows a "hostile" remote site to pump in a large amount
         of traffic into your net, possibly congesting your link to the
         internet.

You can't stop someone from sending a lot of traffic your way; they
can always send an infinite number of packets addressed to anything
that's reachable.  It doesn't matter if the packet is sensible or not --
if it has your address on it, it will be routed your way.  The best
you can manage is to arrange with your provider to filter out anything
you don't want on the Internet side of the comparatively slow link to
your site -- and then the attacker will flood you with something that
will get through that filter.

Current thread:

Re: udp packet storms, (continued)
- - Re: udp packet storms Jas (Oct 30)
  - Re: udp packet storms Perry E. Metzger (Oct 30)
    - Re: udp packet storms Tim Newsham (Oct 30)
    - Re: udp packet storms Darren Reed (Oct 31)
    - Re: udp packet storms Perry E. Metzger (Oct 31)
    - Re: udp packet storms anthony baxter (Oct 31)
    - Re: udp packet storms Paul 'Shag' Walmsley (Oct 31)
    - Re: udp packet storms Darren Reed (Oct 31)
    - CPF: 5th USENIX UNIX Security Symposium Frederick M Avolio (Oct 31)
    - Re: udp packet storms (more results) Paul 'Shag' Walmsley (Oct 31)
- Re: udp packet storms smb () research att com (Oct 30)
- Re: udp packet storms Marc Wilkinson (Oct 31)