[plug] local DoS with ping -R
John Summerfield
summer at os2.ami.com.au
Tue Dec 14 03:21:18 WST 1999
> On Mon, 13 Dec 1999, Anthony J. Breeds-Taurima wrote:
>
> > This means you can't atack someone from 2.1, without hacking ping.c It
> > doesn't mean you can't be attacked by someone (... well you're obviously
> > behind a f/w so that doesn't count) BUT if you're box had a real IP I
> > recon you'd be vulnerable
>
> You are missing the point.. There are actually three issues here.
>
> 1. Some versions of pings allow "mere mortals" to create large packets
> with -s and use those packets to flood somebody else's link.
> You can also flood someone's link from your own box as root, but you
> are limited by the size of your own link, which is why the -s problem
> only really applies for ISPs, where you don't want "mere mortals" to
> use your big E1 link to flood some poor soul's 56k link.
> (Of course there are easier ways to flood someone's link that don't
> require root access, such as sending lots and lots of large UDP
> packets)
it's actually '-f' to flood.
--
Cheers
John Summerfield
http://os2.ami.com.au/os2/ for OS/2 support.
Configuration, networking, combined IBM ftpsites index.
More information about the plug
mailing list