[3550] in bugtraq
Re: Suspicion about denial of service attacks possible on IP.
daemon@ATHENA.MIT.EDU (Keith Bostic)
Tue Oct 22 17:53:35 1996
Date: Tue, 22 Oct 1996 10:29:49 -0400
Reply-To: Keith Bostic <bostic@bsdi.com>
From: Keith Bostic <bostic@bsdi.com>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
> I was idly reading through Internetworking with TCP/IP yesterday when
> it hit me what might be a possible denial of service attack on IP stacks.
> What would happen if a host was bombarded with faked fragments of large
> IP packages. Would the stack allocate more and more memory trying to
> reconstruct the packages or do they operate with a fixed/max size limit
> on memory allocated for IP defragmentation?
Yes. ;-}
Part of the recent BSD/OS patches were to fix precisely this
type of attack.
--keith
