Date: Wed, 21 Apr 2004 22:03:34 +0000 (GMT) From: "E.B. Dreger" <eddy+public+spam@noc.everquick.net> To: Gary Corcoran <garycor@comcast.net> Cc: freebsd-security@freebsd.org Subject: Re: Other possible protection against RST/SYN attacks (was Re: TCP RST attack Message-ID: <Pine.LNX.4.44.0404212202130.21896-100000@a.mx.ict1.everquick.net> In-Reply-To: <4086EED7.3070808@comcast.net>
next in thread | previous in thread | raw e-mail | index | archive | help
GC> Date: Wed, 21 Apr 2004 17:59:51 -0400 GC> From: Gary Corcoran GC> In any event, it still seems like 255 is overkill for this GC> application... It isn't. Say you assumed TTL 128 instead of 255; received packets should have a TTL of 127. If I'm eleven hops away instead of one, I'll select a TTL of 138 to have the desired effect. Eddy -- EverQuick Internet - http://www.everquick.net/ A division of Brotsman & Dreger, Inc. - http://www.brotsman.com/ Bandwidth, consulting, e-commerce, hosting, and network building Phone: +1 785 865 5885 Lawrence and [inter]national Phone: +1 316 794 8922 Wichita _________________________________________________________________ DO NOT send mail to the following addresses : blacklist@brics.com -or- alfra@intc.net -or- curbjmp@intc.net Sending mail to spambait addresses is a great way to get blocked.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.44.0404212202130.21896-100000>