Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 21 Jun 2000 10:02:35 -0700 (PDT)
From:      John F Cuzzola <vdrifter@ocis.ocis.net>
To:        Mike Silbersack <silby@silby.com>
Cc:        Maksimov Maksim <maksim@tts.tomsk.su>, freebsd-security@FreeBSD.ORG
Subject:   Re: How defend from stream2.c attack?
Message-ID:  <Pine.LNX.4.21.0006210959020.5119-100000@ocis.ocis.net>
In-Reply-To: <Pine.BSF.4.21.0006211113140.60705-100000@achilles.silby.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

Hi There,
Thanks for the information. I use alot of FreeBSD servers as dedicated
firewalls and as such am very interested in this kind of information. I
have set net.inet.icmp.icmplim down to 20 (it was set at 200) as
recommended and was wondering what exactly does this variable do? Also do
you recommend compiling the kernel with the restrict RST option as well
and what are the implications of doing so? (ie: what does it break?)

Tanks Mike (& everyone who contributes to this listserv)




On Wed, 21 Jun 2000, Mike Silbersack wrote:

> 
> Is ICMP_BANDLIM enabled?  If so, crank net.inet.icmp.icmplim down to 20 or
> so, and you should be just as protected as if enabling the restrict RST
> option.
> 
> (And if it's not compiled in, do so!)
> 
> Mike "Silby" Silbersack
> 
> On Wed, 21 Jun 2000, Maksimov Maksim wrote:
> 
> > How defend from stream2.c attack (flooding ACK-packets) on my FreeBSD box?
> > I install FreeBSD 4.0-20000608-STABLE, but stream2.c attack freezed this
> > FreeBSD box as before!
> > Help!
> > 
> > Best regards,
> > Maks Maksimov                           mailto:maksim@tts.tomsk.su
> > 
> > 
> > 
> > 
> > 
> > 
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-security" in the body of the message
> > 
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.21.0006210959020.5119-100000>