Bugtraq mailing list archives
Re: mail storm
From: arikb () ccarik technion ac il (Arik Baratz)
Date: Tue, 13 Aug 1996 11:05:30 +0300
On Mon, 12 Aug 1996, Dan Stromberg wrote:
If this "attack" is feasible, it would seem the most effective defense is to use only mailing list software, that requires a magic-cookie authenticated response from subscribers.
How about a "Standard" cure: make sure EVERY mailing list includes some special header in file it sends, and NEVER accept mail which contains that header. I have seen X-Loop: used for this, but not for all the lists I've seen. There should be an exception - for list exploders. --------------------------------------------- ....- --.. ----. -.. --. . Arik Baratz, Regularus Studentus, iNTP, 4Z9DGE --------------------------------------------------------------------------- http://ccarik.technion.ac.il/~arikb finger arikb () aluf technion ac il for PGP key.
Current thread:
- Re: IRIX 5.3 chost Grant Kaufmann (Aug 07)
- <Possible follow-ups>
- Re: IRIX 5.3 chost Bill Nickless (Aug 11)
- Re: IRIX 5.3 chost Grant Kaufmann (Aug 12)
- Re: IRIX 5.3 chost Vern Hart (Aug 12)
- Re: IRIX 5.3 chost Mike Kienenberger (Aug 12)
- mail storm Dan Stromberg (Aug 12)
- Re: mail storm Dan Stromberg (Aug 12)
- Re: mail storm Arik Baratz (Aug 13)
- Re: mail storm Albert Lunde (Aug 12)
- Re: mail storm Igor Chudov @ home (Aug 12)
- Vulnrability in all known Linux distributions bloodmask (Aug 12)
- Re: Vulnrability in all known Linux distributions Steve Czetty (Aug 13)
- Re: Vulnrability in all known Linux distributions Alan Brown (Aug 13)
- Re: Vulnrability in all known Linux distributions Elliot Lee (Aug 13)
- Re: Vulnrability in all known Linux distributions Alan Cox (Aug 14)
- mount/umount realpath() buffer overflow David J. Meltzer (Aug 13)
- Possible bufferoverflow condition in lpr, xterm and xload bloodmask (Aug 12)
- Re: Possible bufferoverflow condition in lpr, xterm and xload Digital Dreamer (Aug 12)