Re: Stealth vs. Blocked
From: David (davidwnh@adelphia.net)
Date: 04/11/03
- Next message: David: "Re: Stealth vs. Blocked"
- Previous message: Donut: "Re: Stealth vs. Blocked"
- In reply to: Whoever: "Re: Stealth vs. Blocked"
- Next in thread: Whoever: "Re: Stealth vs. Blocked"
- Reply: Whoever: "Re: Stealth vs. Blocked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "David" <davidwnh@adelphia.net> Date: Fri, 11 Apr 2003 06:56:11 GMT
I suspect you mean broadcast ICMP echo packets......Hence Smurf attack.
>
> There is value in "stealth" mode for one specific case. Prventing your
> system from responding to broadcast udp "echo" packets. If you do not do
> this, your system can become part of a DDoS attack.
>
> I saw this on my network (at work) once -- the machine that acts as a
> central logging server was spending 70% of its cpu cycles just doing the
> logging of the dropped packets. Up to that point, I had a couple of other
> machines that were responding to the echo request -- not any more, though.
- Next message: David: "Re: Stealth vs. Blocked"
- Previous message: Donut: "Re: Stealth vs. Blocked"
- In reply to: Whoever: "Re: Stealth vs. Blocked"
- Next in thread: Whoever: "Re: Stealth vs. Blocked"
- Reply: Whoever: "Re: Stealth vs. Blocked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
