[5021] in North American Network Operators' Group
Re: DoS, ICMP, proxies, SYNDefender
daemon@ATHENA.MIT.EDU (Tim Bass)
Fri Oct 4 15:07:58 1996
From: Tim Bass <bass@linux.silkroad.com>
To: michael@memra.com (Michael Dillon)
Date: Fri, 4 Oct 1996 14:52:58 -0400 (EDT)
Cc: nanog@merit.edu, iepg@iepg.org
In-Reply-To: <Pine.BSI.3.93.961004095142.24164c-100000@sidhe.memra.com> from "Michael Dillon" at Oct 4, 96 09:53:33 am
> Right on! PHRACK will be publishing my program to transmit bogus ICMP
> UNREACHABLE packets in the december 2001 issue. It's called the Bass
> Player. :-)
Wonderful! And Phack with publish a patch to ip_input.c that redirects all
bogus ICMP directs root names servers as SYN packets called the
Dillion Diversion :-) (think about it..)
Therefore:
It does not matter what the packet *is* or the information in the
packet, it is up to the protocol implementor(s) to 'do the
right thing' when a packet is received.
TCP is broken. ICMP is broken. It is not Phrack or 2600 that
broke it.
VR,
Tim
