Re: flood attacks
From: Ronan Lucio (ronan@melim.com.br)
Date: 09/27/01
- Next message: edwin chan: "Re: what 's the output mean ? maybe I am under attack ?"
- Previous message: Dave: "Re: flood attacks"
- In reply to: Dave: "Re: flood attacks"
- Next in thread: Mike Tancsa: "Re: flood attacks"
- Reply: Mike Tancsa: "Re: flood attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Ronan Lucio" <ronan@melim.com.br> To: "Dave" <mudman@R181172.resnet.ucsb.edu> Date: Thu, 27 Sep 2001 13:41:57 -0300
Hi Dave,
But, in my case, I looked at mrtg graphics and saw that
it had big flow during 1 hour.
So, I supposed to prevent such situation.
[ ]īs
Ronan Lucio
> > Limiting closed port RST response from 1800 to 200 packets per
second.
>
> Awhile back, I managed to reproduce this by portscanning myself with a
> very fast scanner which doesn't wait for any kind of response from the
> server before testing the next port. The 1800 to 200 message thing sounds
> quite general, so you could be getting flooded with lots of different
> kinds of data. If the messages come in briefly and then stop for awhile
> (rather than a continus flow) you could just be getting a fast port scan.
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
>
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: edwin chan: "Re: what 's the output mean ? maybe I am under attack ?"
- Previous message: Dave: "Re: flood attacks"
- In reply to: Dave: "Re: flood attacks"
- Next in thread: Mike Tancsa: "Re: flood attacks"
- Reply: Mike Tancsa: "Re: flood attacks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
