[13148] in bugtraq
Re: The "Mac DoS Attack," a Scheme for Blocking Internet
daemon@ATHENA.MIT.EDU (Alan Cox)
Thu Dec 30 13:26:47 1999
Content-Type: text
Message-Id: <E123VaW-0002QI-00@the-village.bc.nu>
Date: Thu, 30 Dec 1999 02:45:14 +0000
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: jacopeland@ATL.MEDIAONE.NET
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <v04210107b48fe225a44e@[24.88.26.197]> from "John Copeland" at
Dec 29, 99 11:07:03 am
> The Internet Service Providers (ISPs) must take action to drop long ICMP
> packets in the backbone networks (any packet longer than 1499 bytes, at
> least).
This will break existing "good behaviour" legal systems and potentially
disrupt MTU discovery proceedure. It isnt a feasible option without a lot
of additional checks to the packet type etc, at which point with many routers
the firewall rules involved turn into a performance based DoS on the core
routers.
Alan
