nanog mailing list archives

Re: A modest proposal

From: Paul Ferguson <pferguso () cisco com>
Date: Wed, 18 Sep 1996 19:13:35 -0400

At 06:51 PM 9/17/96 -0400, Robert E. Seastrom wrote:

This discussion of securing dialup servers is pointless.  I guarantee
you that the 2000 packet/second SYN attacks we've been seeing are
coming from a compromised host on a high speed connection and not from
someone's 28.8k dialup connection.  The hackers just take over a
machine, use it to launch their attacks, and disappear into the jungle
if we manage to find the particular machine they're using tonight.

Harden your servers, filter on all non-transit ports on your routers,
but let's let the how-to-do-filtering-on-terminal-servers discussion
die, OK?

                                       ---Rob


Rob,

'Securing dialup servers' discussion is certainly not pointless; there
are certainly considerations that need to be taken in any remote access
environment -- that's a fact.

Please don't be so quick to dismiss anyone's ideas on this topic; we're
going to need full-force input from everyone in the operational world.

- paul

- - - - - - - - - - - - - - - - -

Current thread:

SYN attack. how does it *really* work, (continued)
- - - SYN attack. how does it *really* work Jonathan M. Bresler (Sep 17)
    - Re: A modest proposal Curtis Villamizar (Sep 17)
- Re: A modest proposal Daniel W. McRobb (Sep 17)
- Re: A modest proposal Perry E. Metzger (Sep 18)
- Re: A modest proposal Vadim Antonov (Sep 17)
- Re: A modest proposal Sean Donelan (Sep 17)
- Re: A modest proposal Sean Donelan (Sep 17)
  - Re: A modest proposal Michael Dillon (Sep 17)
  - Re: A modest proposal Curtis Villamizar (Sep 17)
- Re: A modest proposal Paul Ferguson (Sep 18)
- Re: A modest proposal Paul Ferguson (Sep 18)