HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 40 guests and 1 member online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Malwarearrow Fyodor Explains TCP DOS attack
EH-Net
May 24, 2013, 01:33:12 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Fyodor Explains TCP DOS attack  (Read 5604 times)
0 Members and 1 Guest are viewing this topic.
apollo
Full Member
***
Offline Offline

Posts: 146


View Profile WWW
« on: October 06, 2008, 07:20:08 PM »
I thought that this was a great explanation.  We don't know for sure what what Robert E Lee is going to say about the vulnerability, but this is good reading none the less.

http://insecure.org/stf/tcp-dos-attack-explained.html
Logged
CISSP, CSSLP, MCSE+Security, MCTS, CCSP, GPEN, GWAPT, GCWN, NOP, OSCP, Security+
geekyone
Full Member
***
Offline Offline

Posts: 180



View Profile
« Reply #1 on: October 06, 2008, 10:22:19 PM »
I agree it is good reading.  If you go down to the FAQ's under Fyodor's explanation there is a link to Robert Lee's response.

http://blog.robertlee.name/2008/10/conjecture-speculation.html
Logged
CISSP, CEH, GPEN, GCIH, GCFA
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #2 on: October 07, 2008, 04:00:43 AM »
Agreed this is a good article that goes beyond the media circus of 'Oh noes, the sky is falling'. I'm just waiting to see if there is any real impact from the findings once they release full details.

Think BillV beat you to the punch though....
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #3 on: October 07, 2008, 04:07:54 PM »
Definitely a good article.  I am not sure that I understand why this is so huge though.   It seems like the same DOS attacks that have been around for a while.   Isn't it still a battle of who has more resources and bandwidth?   

I would imagine you can easily use a firewall rule or an IDS rule to limit the number of connections coming from a particular IP address, right?   Even in a DDOS scenario, you would still have an unusually high number of connections from each IP address involved, right?   
Logged
~~~~~~~~~~~~~~
Ketchup
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.06 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.