Vulnerability Development mailing list archives
Re: New DoS attack
From: mikael.olsson () ENTERNET SE (Mikael Olsson)
Date: Sun, 18 Jun 2000 15:07:56 +0200
Bluefish wrote:
Understanding that UDP is faster and necessary for game programmers, still I can't understand the lack of security. A simple "3-way handshaking" roughly reproduced by UDP method would stop all of this, right ?Which would introduce some of the "slowness" in TCP. Once you make UDP into something more complex, you loose some of the benefits UDP offers.
Nah. In the real-time game/app scenario you can live with a three-way handshake in the beginning. What you want is a protocol that doesn't slow down due to packet loss, and you still get that. Besides, I wouldn't be the least surprised if some of the games already do some sort of three-way handshake in the beginning to protect against late packets and duplicates. Maybe they just need to start thinking "true random sequence numbers / tokens are good" and we're all fine. *shrug* /Mike -- Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK Phone: +46 (0)660 29 92 00 Direct: +46 (0)660 29 92 05 Mobile: +46 (0)70 66 77 636 Fax: +46 (0)660 122 50 WWW: http://www.enternet.se/ E-mail: mikael.olsson () enternet se
Current thread:
- R: New DoS attack Raistlin (Jun 15)
- Re: R: New DoS attack Bluefish (Jun 17)
- Re: New DoS attack Mikael Olsson (Jun 18)
- R: R: New DoS attack Raistlin (Jun 20)
- Re: R: R: New DoS attack Bluefish (Jun 21)
- Re: R: New DoS attack Bluefish (Jun 17)