Date: Mon, 2 May 2005 16:43:41 +0000 (UTC) From: c0ldbyte <c0ldbyte@myrealbox.com> To: gandalf@digital.net Cc: freebsd-net@freebsd.org Subject: Re: FreeBSD and the Rose Attack / NewDawn Message-ID: <20050502163519.V69368@eleanor.us1.wmi.uvac.net> In-Reply-To: <32528526.1115049523374.JavaMail.root@wamui08.slb.atl.earthlink.net> References: <32528526.1115049523374.JavaMail.root@wamui08.slb.atl.earthlink.net>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 2 May 2005 gandalf@digital.net wrote: > Greetings and Salutations: > > I *just* got my FreeBSD setup stable and working witha KDE GUI. :-). I know, easy for you guys but this is the first time I have set up FreeBSD with automatic updates. I settled on FreeBSD 5.4 after many tries. > > I tried the Rose Attack / NewDawn against my laptop (it is a slow Pentium II 400 MHz Dell Inspiron 7000): > http://digital.net/~gandalf/Rose_Frag_Attack_Explained.htm > > Specifically: > ../NewDawn4 1 <IP Address> 0 5 9999 99999999 4000 2 > > My machine locked up at pretty close to 100% when viewing the top command. > > I asked a fellow worker who had a PIII 733 MHz to take a look and he reported about 70% CPU increase. > > FYI. You might wish to take a look into this, IMHO this is a decent CPU DOS. > > Ken > Works nicely if you have access to root on a local machine for lan use and the machines have been compiled with bpf support. Other then that my testing on these cases over the net "internet" have not yielded any proposed results to effect FreeBSD machines. Tried on 4.x & 5.x. Any other proof that this yields anything that we need to worry about?. - -- ( When in doubt, use brute force. -- Ken Thompson 1998 ) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) Comment: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xF7DF979F Comment: Fingerprint = D1DC 0AA4 1C4E EAD4 24EB 7E77 B261 50BA F7DF 979F iD8DBQFCdljAsmFQuvffl58RAheSAJ4ulWNwBZaskZflofKJ1JXeKlgf5ACfbjh0 p3GHiuf/qf2KQq/oWDkFwjI= =fT62 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050502163519.V69368>