[423] in Best-of-Security
BoS: Re: `smurf' multi-broadcast icmp attack
daemon@ATHENA.MIT.EDU (Joshua Krage)
Fri Oct 24 16:50:58 1997
Old-X-Envelope-From: jkrage@access.digex.net Fri Oct 24 00:57:53 1997
From: Joshua Krage <jkrage@access.digex.net>
Date: 23 Oct 1997 10:57:15 -0400
In-Reply-To: Brian Kaye's message of Wed, 22 Oct 1997 08:53:21 -0300 (ADT)
Old-X-Originally-To: To: best-of-security@cyber.com.au
Old-X-Originated-From: From: Joshua Krage <jkrage@access.digex.net>
Errors-To: best-of-security-request@cyber.com.au
To: best-of-security@cyber.com.au
Resent-From: best-of-security@cyber.com.au
Brian Kaye <bdk@saturn.csd.unb.ca> writes:
> In AIX the "no" command is ued to turn this feature on and off. By default
> AIX will not respond to pings to the brodcast address. Form the man page:
Correct only for AIX4. Aix 3 variants will respond to a broadcast
ping, and the 'no' command (for AIX3) does not support the 'bcastping'
directive.
For a startup script, the 'no' syntax for AIX4 is:
no -o bcastping=0 # disable bcast ping responses (default)
no -o bcastping=1 # enable bcast ping responses
Ciao.
--------------------------------------------------------------------------
jkrage@access.digex.net UNIX, Networks, and Computer Security, oh my!
