Re: Stealth vs. Blocked

From: David (davidwnh@adelphia.net)
Date: 04/11/03


From: "David" <davidwnh@adelphia.net>
Date: Fri, 11 Apr 2003 06:56:11 GMT

I suspect you mean broadcast ICMP echo packets......Hence Smurf attack.
>
> There is value in "stealth" mode for one specific case. Prventing your
> system from responding to broadcast udp "echo" packets. If you do not do
> this, your system can become part of a DDoS attack.
>
> I saw this on my network (at work) once -- the machine that acts as a
> central logging server was spending 70% of its cpu cycles just doing the
> logging of the dropped packets. Up to that point, I had a couple of other
> machines that were responding to the echo request -- not any more, though.