Re: Stealth vs. Blocked
From: Joseph V. Morris (jvmorris@erols.com)
Date: 04/12/03
- Next message: WyldeRover: "Re: Stealth vs. Blocked"
- Previous message: David: "Re: Stealth vs. Blocked"
- In reply to: David: "Re: Stealth vs. Blocked"
- Next in thread: Whoever: "Re: Stealth vs. Blocked"
- Reply: Whoever: "Re: Stealth vs. Blocked"
- Reply: David: "Re: Stealth vs. Blocked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Joseph V. Morris" <jvmorris@erols.com> Date: Fri, 11 Apr 2003 20:30:35 -0400
Are you guys jiving us? I've never seen a probe on UDP 7 as far as I can
recall in the past three years. In the last 70 days, www.incidents.org
shows an absolute (and exceptional) level of 271 targets probed on 10 Feb.
The next highest total is 48 -- and that's today (interestingly).
"David" <davidwnh@adelphia.net> wrote in message
news:knIla.25708$D31.2546275@news1.news.adelphia.net...
> Well now we have two (of many) specific reasons for all the nonbelievers
to
> not only consider using a firewall (or at least cable/dsl router) but also
> "stealthing" or dropping packets (or at least limiting or denying specific
> ICMP responses).
> I think the problem is that "stealthing" is sort of a misnomer since it's
> main benefit has very little to do with actually "hiding" your connection.
> >
> > > I suspect you mean broadcast ICMP echo packets......Hence Smurf
attack.
> >
> > No, I was referring to broadcast UDP packets sent to the "echo" port
> > (udp/7). This is one form of the "Fraggle" attack.
> >
>
>
- Next message: WyldeRover: "Re: Stealth vs. Blocked"
- Previous message: David: "Re: Stealth vs. Blocked"
- In reply to: David: "Re: Stealth vs. Blocked"
- Next in thread: Whoever: "Re: Stealth vs. Blocked"
- Reply: Whoever: "Re: Stealth vs. Blocked"
- Reply: David: "Re: Stealth vs. Blocked"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
