From owner-cvs-all  Thu Feb 17 11: 5:41 2000
Delivered-To: cvs-all@freebsd.org
Received: from zippy.cdrom.com (zippy.cdrom.com [204.216.27.228])
	by hub.freebsd.org (Postfix) with ESMTP
	id D760637B804; Thu, 17 Feb 2000 11:05:34 -0800 (PST)
	(envelope-from jkh@zippy.cdrom.com)
Received: from zippy.cdrom.com (jkh@localhost [127.0.0.1])
	by zippy.cdrom.com (8.9.3/8.9.3) with ESMTP id LAA00641;
	Thu, 17 Feb 2000 11:05:46 -0800 (PST)
	(envelope-from jkh@zippy.cdrom.com)
To: "Daniel C. Sobral" <dcs@newsguy.com>
Cc: "Jordan K. Hubbard" <jkh@FreeBSD.org>,
	cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/etc hosts.allow 
In-reply-to: Your message of "Fri, 18 Feb 2000 03:56:25 +0900."
             <38AC4459.3844ADBA@newsguy.com> 
Date: Thu, 17 Feb 2000 11:05:46 -0800
Message-ID: <638.950814346@zippy.cdrom.com>
From: "Jordan K. Hubbard" <jkh@zippy.cdrom.com>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk

It's not a DoS attack unless you send email. :)

- Jordan

> "Jordan K. Hubbard" wrote:
> > 
> > jkh         2000/02/16 20:52:24 PST
> > 
> >   Modified files:
> >     etc                  hosts.allow
> >   Log:
> >   The default rule in this file actually sent mail to root as its default
> >   action when denying access to a service.  Unfortunately, this also makes
> >   a dandy denial-of-service attack possible.  Change to just log the event
> >   and shoot a "go away" response back down the socket.
> 
> Isn't silently dropping the packet a much more efficient way of dealing
> with DoS attacks?
> 
> --
> Daniel C. Sobral			(8-DCS)
> dcs@newsguy.com
> dcs@freebsd.org
> 
> 	"If you consider our help impolite, you should see the manager."



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message