Date: Fri, 23 Mar 2001 08:19:42 -0800 (PST) From: Roger Marquis <marquis@roble.com> To: security@FreeBSD.ORG Subject: Re: DoS attack - advice needed Message-ID: <Pine.BSF.4.21.0103230814580.84207-100000@roble.com>
next in thread | raw e-mail | index | archive | help
"Antonio Carlos Pina" <apina@infolink.com.br> wrote: >Source quench is supposed to be needed but is bad (big security risks). Yo= u >should avoid it. Source quench is bad? Could you elaborate? Also, what is the difference between an ICMP flood and a TCP or UDP flood? This topic comes up in comp.protocols.tcp-ip from time to time and the common wisdom recommends allowing icmptypes 0,3,4,8, and 11. I have not yet seen a good reason not to allow these icmptypes yet posted to this forum. --=20 Roger Marquis Roble Systems Consulting http://www.roble.com/ >> I=B4d like say to allow the follow icmptypes: >> >> 3 (destination unreachable) >> 4 (source quench) >> 11 (ttl exceeded) >> 12 (ip header bad) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0103230814580.84207-100000>