[5049] in North American Network Operators' Group
Re: TCP SYN attacks - a simple solution
daemon@ATHENA.MIT.EDU (Avi Freedman)
Sun Oct 6 20:18:32 1996
From: Avi Freedman <freedman@netaxs.com>
To: rex@cs.su.oz.au
Date: Sun, 6 Oct 1996 20:11:21 -0400 (EDT)
Cc: bugtraq@netspace.org, nanog@merit.edu, iepg@iepg.org
In-Reply-To: <199610062314.TAA29781@merit.edu> from "Rex di Bona" at Oct 7, 96 08:10:27 am
> I'm going to implement this, using boring old md5, and give it a try,
> but I was wondering if there are any thoughts about this as a solution?
> Any obvious holes I missed.
>
> Rex di Bona.
Using md5, it seems to be working just fine (when it works and doesn't
crash :)).
Code for starters can be found at ftp.op.net:/pub/src/synprophylactica,
I believe.
One thing: You must STORE the MSS as part of the iss, or a table of common
MSS values. Initial data and window args you seem to be able to ditch without
effect.
Avi
