Date: Mon, 16 Jul 2001 11:54:27 -0400 (EDT) From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> To: Peter Pentchev <roam@orbitel.bg> Cc: net@FreeBSD.ORG Subject: ICMP source quench - deprecated? Message-ID: <200107161554.f6GFsRu34790@khavrinen.lcs.mit.edu> In-Reply-To: <20010716152638.B52566@ringworld.oblivion.bg> References: <20010716152638.B52566@ringworld.oblivion.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Mon, 16 Jul 2001 15:26:38 +0300, Peter Pentchev <roam@orbitel.bg> said: > Is there any reason for ICMP source quench to be deprecated? There are a few problems with ICMP source quench: 1) If a sender-TCP actually pays attention to them, an attacker can substantially reduce TCP performance by forging them (a low-grade DoS attack). 2) Few if any routers legitimately generate the things (see #3). 3) The Internet community figured out a decade or more ago that the last thing one wants to do on an overloaded link is to generate even more traffic. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200107161554.f6GFsRu34790>