[plug] local DoS with ping -R

John Summerfield summer at os2.ami.com.au
Tue Dec 14 03:21:18 WST 1999


> On Mon, 13 Dec 1999, Anthony J. Breeds-Taurima wrote:
> 
> > This means you can't atack someone from 2.1, without hacking ping.c It
> > doesn't mean you can't be attacked by someone (... well you're obviously
> > behind a f/w so that doesn't count)  BUT if you're box had a real IP I
> > recon you'd be vulnerable
> 
> You are missing the point.. There are actually three issues here.
> 
> 1. Some versions of pings allow "mere mortals" to create large packets
>    with -s and use those packets to flood somebody else's link.
>    You can also flood someone's link from your own box as root, but you
>    are limited by the size of your own link, which is why the -s problem
>    only really applies for ISPs, where you don't want "mere mortals" to
>    use your big E1 link to flood some poor soul's 56k link.
>    (Of course there are easier ways to flood someone's link that don't
>     require root access, such as sending lots and lots of large UDP
>     packets)

it's actually '-f' to flood.



-- 
Cheers
John Summerfield
http://os2.ami.com.au/os2/ for OS/2 support.
Configuration, networking, combined IBM ftpsites index.




More information about the plug mailing list