Re: netkit-inetd in sarge
On Sun, Oct 19, 2003 at 01:37:58PM +1000, Andrew Pollock wrote:
> On Sat, Oct 18, 2003 at 09:32:54PM -0400, Matt Zimmerman wrote:
> > Yes, it receives data from the network and throws it away. But I don't see
> > how this figures into your example. If you can give me an scenario where
> > this service would allow a malicious remote user to DoS anything other than
> > the discard service itself, that would be interesting. Otherwise, I'm
> > inclined to say that it's quite harmless (and indeed useful).
> Hmm, am I the only one that thinks
> dd if=/dev/zero | nc victim discard
> is a bad thing, in an environment where the victim is paying cents per meg
> for inbound traffic? I'm no so much talking about DoSing anything, but
> causing financial damage.
Yes, I think you are the only one so far who thinks that this is any
different, in terms of potential harm, from spraying exactly the same
packets without anything listening on the discard port on the remote host.