Date: Thu, 22 Mar 2001 17:18:22 -0300 From: "Antonio Carlos Pina" <apina@infolink.com.br> To: <freebsd-security@freebsd.org> Subject: Re: DoS attack - advice needed Message-ID: <004601c0b30d$3e718e30$0b6cffc8@infolink.com.br> References: <Pine.BSF.4.33.0103221121250.8421-100000@awww.jeah.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Chris, I will give you just one reason: Path-mtu discovery. Unless you have such type of icmp enabled, some networks won't access your site. Best Regards, Cordialmente, Antonio Carlos Pina Diretor de Tecnologia INFOLINK Internet http://www.infolink.com.br ----- Original Message ----- From: "Chris Byrnes" <chris@jeah.net> To: <scanner@jurai.net> Cc: "Marc Rogers" <marcr@shady.org>; <freebsd-security@FreeBSD.ORG> Sent: Thursday, March 22, 2001 2:22 PM Subject: Re: DoS attack - advice needed > > Do *NOT* block ICMP point blank at ALL. If you need to filter certain > > type's and code's, fine. But NEVER slap an embargo on the entire ICMP > > protocol. The mentality to do this blows me away every time I hear it > > uttered from people. > > Why? If you have idiots running ping -f yourserver.com from 150 ISPs > around the world, you're going to want to filter ICMP. That's what I did > awhile back. > > And I haven't found a valid reason to re-enable it. > > > > + Chris Byrnes, chris@JEAH.net > + JEAH Communications > + 1-866-AWW-JEAH (Toll-Free) > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004601c0b30d$3e718e30$0b6cffc8>