Date: Thu, 17 Feb 2000 11:05:46 -0800 From: "Jordan K. Hubbard" <jkh@zippy.cdrom.com> To: "Daniel C. Sobral" <dcs@newsguy.com> Cc: "Jordan K. Hubbard" <jkh@FreeBSD.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc hosts.allow Message-ID: <638.950814346@zippy.cdrom.com> In-Reply-To: Your message of "Fri, 18 Feb 2000 03:56:25 %2B0900." <38AC4459.3844ADBA@newsguy.com>
next in thread | previous in thread | raw e-mail | index | archive | help
It's not a DoS attack unless you send email. :) - Jordan > "Jordan K. Hubbard" wrote: > > > > jkh 2000/02/16 20:52:24 PST > > > > Modified files: > > etc hosts.allow > > Log: > > The default rule in this file actually sent mail to root as its default > > action when denying access to a service. Unfortunately, this also makes > > a dandy denial-of-service attack possible. Change to just log the event > > and shoot a "go away" response back down the socket. > > Isn't silently dropping the packet a much more efficient way of dealing > with DoS attacks? > > -- > Daniel C. Sobral (8-DCS) > dcs@newsguy.com > dcs@freebsd.org > > "If you consider our help impolite, you should see the manager." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?638.950814346>