[4441] in North American Network Operators' Group
Re: New Denial of Service Attack on Panix
daemon@ATHENA.MIT.EDU (Craig A. Huegen)
Tue Sep 17 00:00:52 1996
Date: Mon, 16 Sep 1996 20:52:38 -0700 (PDT)
From: "Craig A. Huegen" <c-huegen@quad.quadrunner.com>
To: "Perry E. Metzger" <perry@piermont.com>
cc: "David J. Schmidt" <davids@on-ramp.ior.com>, kwe@6sigmanets.com,
nanog@merit.edu, iepg@iepg.org
In-Reply-To: <199609170213.WAA24571@jekyll.piermont.com>
On Mon, 16 Sep 1996, Perry E. Metzger wrote:
==>Right now? If you don't have system source to your kernels I would say
==>you are hosed. I would suggest trying to work to get lots of ISPs to
==>filter outgoing packets. Its the surest defense for
==>everyone. Additionally, if you do have sources to your kernel there
==>may be fixes that can be made in advance of vendors announcing
==>patches.
As part of a task force studying this problem, I have called some of the
major hardware vendors (namely SGI, HP, and Sun). SGI told one of the
team members "we're not allowed to really talk about this". Sun and HP
have both said "we've formed a council that has been evaluating the
situation, and will make available anything we have done to help alleviate
or prevent the problems".
/cah
