Re: Other possible protection against RST/SYN attacks (was Re: TCP RST attack

From: E.B. Dreger (eddy+public+spam_at_noc.everquick.net)
Date: 04/22/04

  • Next message: Gary Corcoran: "Re: Other possible protection against RST/SYN attacks (was Re: TCP RST attack" 
    Date: Wed, 21 Apr 2004 22:03:34 +0000 (GMT)
To: Gary Corcoran <garycor@comcast.net>

    GC> Date: Wed, 21 Apr 2004 17:59:51 -0400
    GC> From: Gary Corcoran

    GC> In any event, it still seems like 255 is overkill for this
    GC> application...

    It isn't. Say you assumed TTL 128 instead of 255; received
    packets should have a TTL of 127. If I'm eleven hops away
    instead of one, I'll select a TTL of 138 to have the desired
    effect.

    Eddy 

    --
EverQuick Internet - http://www.everquick.net/
A division of Brotsman & Dreger, Inc. - http://www.brotsman.com/
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 785 865 5885 Lawrence and [inter]national
Phone: +1 316 794 8922 Wichita
_________________________________________________________________
          DO NOT send mail to the following addresses :
  blacklist@brics.com -or- alfra@intc.net -or- curbjmp@intc.net
Sending mail to spambait addresses is a great way to get blocked.
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
  • Next message: Gary Corcoran: "Re: Other possible protection against RST/SYN attacks (was Re: TCP RST attack"