Re: Why Linux, Why Debian
On Sat, 21 Feb 2004 19:39, Andrew Suffield <asuffield@debian.org> wrote:
> No, chargen cannot form part of a DoS attack. Nothing which is
> equivalent to or less effective than a UDP flood forms a meaningful
> part of a DoS attack.
There have been some DoS attacks based on a url of the form:
http://localhost:19/whatever
From memory they affected Netscape Navigator and IE, and some web proxy
software.
Whether this is the fault of the application for not having some limit to
memory use is something that we can debate. Chargen-TCP has been used as
part of a DoS attack, and turning it off will alleviate some things.
Chargen-UDP is just a bad idea.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
Reply to: