Re: Stealth vs. Blocked
From: David (firstname.lastname@example.org)
From: "David" <email@example.com> Date: Fri, 11 Apr 2003 06:56:11 GMT
I suspect you mean broadcast ICMP echo packets......Hence Smurf attack.
> There is value in "stealth" mode for one specific case. Prventing your
> system from responding to broadcast udp "echo" packets. If you do not do
> this, your system can become part of a DDoS attack.
> I saw this on my network (at work) once -- the machine that acts as a
> central logging server was spending 70% of its cpu cycles just doing the
> logging of the dropped packets. Up to that point, I had a couple of other
> machines that were responding to the echo request -- not any more, though.