[15555] in North American Network Operators' Group
Re: More smurf fun
daemon@ATHENA.MIT.EDU (Jeffrey Haas)
Mon Mar 9 16:08:45 1998
To: nanog@merit.edu
Date: Mon, 9 Mar 1998 14:58:30 -0500 (EST)
From: Jeffrey Haas <elezar@pfrc.org>
Reply-to: elezar@pfrc.org
Dave Rand was known to have said:
> Here's the latest group of smurf-able networks.
[...]
> Some of the phone calls were interesting. Many of the NOC staff did not
> know what a smurf attack was (so I explained it to them). Many did not want
> to set no ip directed-broadcast because they didn't know what it would do.
[...]
> 148.59.0.0
A quick note:
If you find yourself having problems from this netblock, please contact
either jmh@msen.com (me) or noc@msen.com.
We currently cannot disable directed broadcast due to a NASTY bug
in the packet forwarding code of the Proteon routers we use on our
backbone. We are working with Proteon to solve this issue.
(I'm also trying to figure out if the issue is worth posting to Bugtraq.)
In the meanwhile, we have implemented blackhole routing for the subnets
that seemed to be at issue.
> Dave Rand
--
Jeffrey Haas "He that breaks a thing to find out what it is has
elezar@pfrc.org left the paths of wisdom." (Or works for Fermilab...)
