[65347] in Cypherpunks

home help back first fref pref prev next nref lref last post

Re: PANIX.COM down: denial of service attack

daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Fri Sep 13 00:32:41 1996

To: M C Wong <mcw@hpato.aus.hp.com>
Cc: cypherpunks@toad.com
In-Reply-To: Your message of "Fri, 13 Sep 1996 13:34:43 EST."
             <199609130334.AA161125684@relay.hp.com> 
Reply-To: perry@piermont.com
Date: Fri, 13 Sep 1996 00:08:55 -0400
From: "Perry E. Metzger" <perry@piermont.com>


M C Wong writes:
> >                For those who are IP hackers, the problem is that we're
> >                being flooded with SYNs from random IP addresses on
> >                our smtp ports. We are getting on average 150 packets
>                      ^^^^
> 
>                  Can't access to this port be guarded against by a filtering
> 		 router which is configured to accept *only* a number of
> 		 trusted MX hosts ?

Sure -- if you only want to accept mail from fifteen machines on
earth. If on the other hand your users might get mail from anywhere on
earth, your mail ports have to be open to connections from anywhere.

.pm

home help back first fref pref prev next nref lref last post