Date: Wed, 31 May 2000 13:56:34 -0400 From: Mitch Collinsworth <mkc@Graphics.Cornell.EDU> To: Visigoth <visigoth@telemere.net> Cc: freebsd-security@freebsd.org Subject: Re: icmp-response bandwidth limit Message-ID: <200005311756.NAA17404@larryboy.graphics.cornell.edu> In-Reply-To: Message from Visigoth <visigoth@telemere.net> of "Wed, 31 May 2000 12:44:58 CDT." <Pine.BSF.4.21.0005311240420.27679-100000@shell.telemere.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> This type of kernel message generally denotes one of two things, >neither of which are usually nice. icmp-response bandwidth limiting is >built into the kernel to lessen the effects of a ping flood, and are often >the result of being flooded, but I have also noticed that message due to >scans such as nmap. Either way, something happened that you will probably >want to know about... I might recomend installing ipfilter and logging >all traffic except your known/public services (and maybe even some of >those ;). Ok, thanks for the info. I failed to mention a couple of possibly relevent items: - This machine is running 3.4-R - There are several other FreeBSD machines on the same net, none of which logged this message, including 2 that are 4.0-R. -Mitch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200005311756.NAA17404>