Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack

From: Tonnerre
Date: Mon Sep 13 2004 - 14:12:14 EST

Next message: BlaisorBlade: "Re: [uml-devel] [PATCH] nptl/sys_clone fix for i386/ppc"
Previous message: Andries Brouwer: "[no patch] broken use of mm_release / deactivate_mm"
In reply to: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Next in thread: Willy Tarreau: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Salut,

On Mon, Sep 13, 2004 at 06:18:47AM +0200, Willy Tarreau wrote:
> > The BGP state machine should instead, in normal operation, have
> > only treated Hold time expired as the definitive sign of "peer is
> > down" and allowed reconnects.
>
> It should not necessarily wait for the time-out, but at least wait for
> a few reconnect errors.

Problem there: you can fake connection errors almost as easily as
sending an RST packet, so the DoS might reappear, might it not?

Tonnerre

Attachment: signature.asc
Description: Digital signature

Next message: BlaisorBlade: "Re: [uml-devel] [PATCH] nptl/sys_clone fix for i386/ppc"
Previous message: Andries Brouwer: "[no patch] broken use of mm_release / deactivate_mm"
In reply to: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Next in thread: Willy Tarreau: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]