Re: netkit-inetd in sarge

To: debian-devel@lists.debian.org
Subject: Re: netkit-inetd in sarge
From: Cameron Patrick <cameron@patrick.wattle.id.au>
Date: Sun, 19 Oct 2003 12:13:02 +0800
Message-id: <[🔎] 20031019041302.GA3377@erdos.home>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20031019033758.GA8791@daedalus.andrew.net.au>
References: <[🔎] 20031018010431.GA24906@daedalus.andrew.net.au> <[🔎] 20031018054051.GB6350@dijkstra.csh.rit.edu> <[🔎] 20031019004847.GA7663@daedalus.andrew.net.au> <[🔎] 20031019013254.GN6350@dijkstra.csh.rit.edu> <[🔎] 20031019033758.GA8791@daedalus.andrew.net.au>

On Sun, Oct 19, 2003 at 01:37:58PM +1000, Andrew Pollock wrote:

| Hmm, am I the only one that thinks
| 
| dd if=/dev/zero | nc victim discard
| 
| is a bad thing, in an environment where the victim is paying cents per meg 
| for inbound traffic? I'm no so much talking about DoSing anything, but 
| causing financial damage.

Yeah, but you can do that on any given port whether it's open or not. e.g.

cat /dev/zero | nc -u victim 12345

(nc in UDP mode seems to ignore "ICMP port unreachable" packets in my
testing...  if it doesn't you can always use iptables to make sure it
does.)

There's no way to /stop/ someone from sending you data, whether you want
it or not.

Cameron.

Reply to:

Follow-Ups:
- Re: netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>

References:
- netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>
- Re: netkit-inetd in sarge
  - From: Matt Zimmerman <mdz@debian.org>
- Re: netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>
- Re: netkit-inetd in sarge
  - From: Matt Zimmerman <mdz@debian.org>
- Re: netkit-inetd in sarge
  - From: Andrew Pollock <apollock@debian.org>

Prev by Date: Re: netkit-inetd in sarge
Next by Date: Re: netkit-inetd in sarge
Previous by thread: Re: netkit-inetd in sarge
Next by thread: Re: netkit-inetd in sarge
Index(es):
- Date
- Thread