Bugtraq mailing list archives
Re: mail storm
From: arikb () ccarik technion ac il (Arik Baratz)
Date: Tue, 13 Aug 1996 11:05:30 +0300
On Mon, 12 Aug 1996, Dan Stromberg wrote:
If this "attack" is feasible, it would seem the most effective defense is to use only mailing list software, that requires a magic-cookie authenticated response from subscribers.
How about a "Standard" cure: make sure EVERY mailing list includes some
special header in file it sends, and NEVER accept mail which contains that
header. I have seen X-Loop: used for this, but not for all the lists I've
seen.
There should be an exception - for list exploders.
--------------------------------------------- ....- --.. ----. -.. --. .
Arik Baratz, Regularus Studentus, iNTP, 4Z9DGE
---------------------------------------------------------------------------
http://ccarik.technion.ac.il/~arikb
finger arikb () aluf technion ac il for PGP key.
Current thread:
- Re: IRIX 5.3 chost Grant Kaufmann (Aug 07)
- <Possible follow-ups>
- Re: IRIX 5.3 chost Bill Nickless (Aug 11)
- Re: IRIX 5.3 chost Grant Kaufmann (Aug 12)
- Re: IRIX 5.3 chost Vern Hart (Aug 12)
- Re: IRIX 5.3 chost Mike Kienenberger (Aug 12)
- mail storm Dan Stromberg (Aug 12)
- Re: mail storm Dan Stromberg (Aug 12)
- Re: mail storm Arik Baratz (Aug 13)
- Re: mail storm Albert Lunde (Aug 12)
- Re: mail storm Igor Chudov @ home (Aug 12)
- Vulnrability in all known Linux distributions bloodmask (Aug 12)
- Re: Vulnrability in all known Linux distributions Steve Czetty (Aug 13)
- Re: Vulnrability in all known Linux distributions Alan Brown (Aug 13)
- Re: Vulnrability in all known Linux distributions Elliot Lee (Aug 13)
- Re: Vulnrability in all known Linux distributions Alan Cox (Aug 14)
- mount/umount realpath() buffer overflow David J. Meltzer (Aug 13)
- Possible bufferoverflow condition in lpr, xterm and xload bloodmask (Aug 12)
- Re: Possible bufferoverflow condition in lpr, xterm and xload Digital Dreamer (Aug 12)