[3356] in bugtraq
Re: SYN Flooding [info]
daemon@ATHENA.MIT.EDU (Alan Cox)
Mon Sep 16 14:52:12 1996
Date: Mon, 16 Sep 1996 09:45:11 +0100
Reply-To: Alan Cox <coxa@cableol.net>
From: Alan Cox <coxa@cableol.net>
X-To: cklaus@iss.net
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <199609131458.KAA06507@phoenix.iss.net> from "Christopher Klaus"
at Sep 13, 96 10:58:24 am
> We have a tool that will look for SYN packets that do not get followed with
> ACK and clean the half open connections by sending a RST packet. This
> unclogs the port and allows legitimate connections to happen. This tool
Nice idea for a tool. Read RFC 1337 "Time wait assassination hazards".
Discuss the data loss issues.
Yes its far better thn nothing, and I really appreciate the fact you folks
put it out for 60 days for free, but its a help not an answer
