From owner-freebsd-security Wed Jun 21 9:15:20 2000 Delivered-To: freebsd-security@freebsd.org Received: from silby.com (cb34181-a.mdsn1.wi.home.com [24.14.173.39]) by hub.freebsd.org (Postfix) with SMTP id 879C137B887 for ; Wed, 21 Jun 2000 09:15:16 -0700 (PDT) (envelope-from silby@silby.com) Received: (qmail 60722 invoked by uid 1000); 21 Jun 2000 16:15:12 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 21 Jun 2000 16:15:12 -0000 Date: Wed, 21 Jun 2000 11:15:12 -0500 (CDT) From: Mike Silbersack To: Maksimov Maksim Cc: freebsd-security@FreeBSD.ORG Subject: Re: How defend from stream2.c attack? In-Reply-To: <000401bfdb64$3eae8320$0c3214d4@dragonland.tts.tomsk.su> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Is ICMP_BANDLIM enabled? If so, crank net.inet.icmp.icmplim down to 20 or so, and you should be just as protected as if enabling the restrict RST option. (And if it's not compiled in, do so!) Mike "Silby" Silbersack On Wed, 21 Jun 2000, Maksimov Maksim wrote: > How defend from stream2.c attack (flooding ACK-packets) on my FreeBSD box? > I install FreeBSD 4.0-20000608-STABLE, but stream2.c attack freezed this > FreeBSD box as before! > Help! > > Best regards, > Maks Maksimov mailto:maksim@tts.tomsk.su > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message