Date: Mon, 16 Sep 1996 22:06:06 -0600 From: Warner Losh <imp@village.org> To: Mikael Karpberg <karpen@ocean.campus.luth.se> Cc: freebsd-security@FreeBSD.org Subject: Re: Panix Attack: synflooding and source routing? Message-ID: <199609170406.WAA06626@rover.village.org> In-Reply-To: Your message of Sat, 07 Sep 1996 19:28:34 %2B0200
next in thread | raw e-mail | index | archive | help
: Now, I'm far from an expert in this matter, but as far as I know a SYN-flood I realize this is a little late... There is a bug in AIX kernels (3.2.5ish ones at least) that older versions of TIA tripped where it would cause a flood of SYN packets. We found out about this when we got a security emergency response message forwarded to us. Maybe something like this is going on. The problem had to do with non-blocking sockets, connection attempts that were non-blocking and strange errnos that were returned. Maybe something like netscape or some other program is causing this (or maybe an old version of TIA even)? Then again, they said that the source address packets were random, which isn't the pattern for the bug I'm reporting... Warner
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199609170406.WAA06626>