Date: Mon, 9 Dec 1996 08:29:36 -0500 From: Scott Morris <smorris@tsi.gte.com> To: Mike Kercher <mike@synwork.com>, freebsd-questions@freebsd.org Subject: Re: Is this Ping of Death for real? Message-ID: <1.5.4.16.19961209082754.491f78d0@uhuru.tsi.gte.com>
next in thread | raw e-mail | index | archive | help
Oh yes, this is a very real problem. The "specially formatted ping"
they refer to is a ping with a packet size >65K. ie ping -l 65777.
Fortunately my testing has shown FreeBSD to be immune,:) wish I could say
the same for my other systems.:(
At 09:32 AM 12/7/96 -0600, you wrote:
>>X-Authentication-Warning: wb5fnd.tech.uh.edu: majordom set sender to
owner-houston-irc using -f
>>Date: Thu, 5 Dec 1996 12:59:16 -0600 (CST)
>>X-AUTH: NOLNET SENDMAIL AUTH
>>X-Sender: skeeter@nol.net
>>To: houston-irc@wb5fnd.tech.uh.edu
>>From: skeeter@nol.net (Paul )
>>Sender: owner-houston-irc@wb5fnd.tech.uh.edu
>>Reply-To: "Houston IRC List" <houston-irc@wb5fnd.tech.uh.edu>
>>X-Status:
>>
>>Check this out!!!! Sounds like bull***t to me!!!
>>
>>"PING OF DEATH" SECURITY FLAW
>>Software programmers are scrambling to fix a recently documented security
>>flaw found in the "ping" Internet function, which is used to check whether a
>>piece of hardware is properly hooked up to a network. The problem arises
>>when a cracker sends a booby-trapped ping command, nicknamed the "ping of
>>death," to a targeted computer. The computer responds by rebooting,
>>crashing or shutting down. Computer security expert Eugene Spafford says
>>he's seen two such attacks on his campus, neither of which was malicious:
>>"You just track down where this came from and have a long talk with them,
>>with or without a blunt instrument." For more information on the "ping of
>>death," check out < http://www.sophist.demon.co.uk/ping/ >. (Chronicle of
>>Higher Education 22 Nov 96 A23)
>>
>>
>>
>~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~
>Syn-Work Media, Inc. | WWW Development & Hosting | Life Safety
>http://www.synwork.com | Systems Integration | CCTV
>mike@synwork.com | Voice/Data/Fiber | Access Control
>Flaq on IRC | Dukane Distributor | BICSI/RCDD
>:|:|:|: Powered By FreeBSD :|:|:|:
>Turning PC's Into Workstations
>~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~'`^`'~*-,._.,-*~
>
____________
Scott Morris
GTE Telecommunication Services
smorris@tsi.gte.com
813-273-3917
*** My opinions do not necessarily reflect those of my employer. ***
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1.5.4.16.19961209082754.491f78d0>