[116] in bugtraq
Re: udp packet storms
daemon@ATHENA.MIT.EDU (John Hawkinson)
Sun Oct 30 12:58:42 1994
From: John Hawkinson <jhawk@panix.com>
To: avalon@coombs.anu.edu.au (Darren Reed)
Date: Sun, 30 Oct 1994 11:42:19 -0500 (EST)
Cc: rwing!pat@ole.cdac.com, newsham@zang.kcc.hawaii.edu, bugtraq@crimelab.com
In-Reply-To: <199410300820.CAA01448@crimelab.crimelab.com> from "Darren Reed" at Oct 30, 94 07:19:58 pm
> From: Darren Reed <avalon@coombs.anu.edu.au>
[ Packets w/ a broadcast address as a source address]
> > How would one prevent this without disabling the udp services?
>
> Can't as they're interal to inetd.
Wrong. Most inetds let you comment out internal services from inetd.conf;
try it, you'll like it.
> Get xinted and hack that to ignore responses from broadcast addresses
> (if it don't already).
Egad, no! xinetd is HUGE, and is just way to big to run as root.
--
John Hawkinson
jhawk@panix.com
