Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id ; Thu, 21 Dec 2000 22:30:40 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id ; Thu, 21 Dec 2000 22:30:31 -0500 Received: from [204.244.205.25] ([204.244.205.25]:8552 "HELO post.gateone.com") by vger.kernel.org with SMTP id ; Thu, 21 Dec 2000 22:30:21 -0500 From: Michael Peddemors Organization: Wizard Internet Services To: Mike OConnor , Kernel Mailing List Subject: Re: No more DoS Date: Thu, 21 Dec 2000 20:09:27 -0800 X-Mailer: KMail [version 1.1.95.0] Content-Type: text/plain In-Reply-To: <977453684.3a42c2744fbb7@ppro.pineview.net> In-Reply-To: <977453684.3a42c2744fbb7@ppro.pineview.net> Cc: netfilter-devel@us5.samba.org MIME-Version: 1.0 Message-Id: <0012212009271E.24471@mistress> Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Not only is this a well written article, and clearer than most other documents (Even Mine :>) but he is dead on track with his basic concepts.. Exactly what I have been looking into over at our company. (Well, close enough) The concept of trusting a SYN packet, has to go.. we have to assume that it is false/bad, and only after receiving the ACK in reply to our SYN/ACK can we start assuming that the previous packets were good.. All IMHO.... Nice find and a good read for anyone.. I am CC'ing the netfilter list as they might like the read.. in case they haven't read it. (Surprised I haven't seen more discussion on this topic) On Thu, 21 Dec 2000, Mike OConnor wrote: > Hi > > I would like to point who ever is in charge of the TCP stack for the linux > kernel at a site which claims to have a method of eliminate denial of > service (DoS) attacks > > http://grc.com/r&d/nomoredos.htm > > With my limited unstanding of TCP and DoS attacks this would seem to be the > answer, instead of a work around. > -- -------------------------------------------------------- Michael Peddemors - Senior Consultant Unix?Administration - WebSite Hosting Network?Services - Programming Wizard?Internet Services http://www.wizard.ca Linux Support Specialist - http://www.linuxmagic.com -------------------------------------------------------- (604)?589-0037 Beautiful British Columbia, Canada -------------------------------------------------------- - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org Please read the FAQ at http://www.tux.org/lkml/