Tugger the SLUGger!SLUG Mailing List Archives

Re: [SLUG] ICMP 0 DoS attack


for detecting DoS check out snort ids, www.snort.org.

It has some "reacting" capability via plugins, suck as reconfiguring ipchains etc. Depends on how you want to react

Also for interesting reading are Dave Ditrich's papers on various DoS stuff, not sure where they are located though.

Brock Henry

At 12:32 11/08/2000 +1000, rod.preece@xxxxxxxxxxxxxxxx wrote:


Anyone know of any software out there that can detect a DoS attack and react
accordingly?

Rod





Howard Lowndes <lannet@xxxxxxxxxxxxx> on 11/08/2000 08:04:50 AM

To:   Mail List - SLUG <slug@xxxxxxxxxxx>, Mail List - Oz-ISP
      <aussie-isp@xxxxxxxxxx>
cc:
Subject:  [SLUG] ICMP 0 DoS attack



If anyone has noticed an ICMP type 0 DoS attack in the past day or so
could they please contact me off list.

I suffered one for exactly 5 hours yesterday, specifically targetted at my
publicly accessible server.  It flatlined my link, unfortunately I wasn't
in the office at the time so I didn't know about it until too late.

--
Howard.
______________________________________________________
LANNet Computing Associates <http://www.lannet.com.au>



--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug



----------------------------------------------------------------
The information transmitted is intended only for the person or entity to which
it is addressed and may contain confidential and/or privileged material.  Any
review, retransmission, dissemination or other use of, or taking of any action
in reliance upon, this information by persons or entities other than the
intended recipient is prohibited.   If you received this in error, please
contact the sender and delete the material from any computer.




--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug

*************************************************************************
Brock Henry - brockh@xxxxxxxxxxxxxx (H) - bhenry@xxxxxxxxxxxxxxxxxxxx (W)

Adventure? Excitement? A Jedi craves not these things.
*************************************************************************