Re: [PATCH] ip_fragment.c and related, kernel 2.0.34 - Allows ,

Krzysztof G. Baranowski (kgb@manjak.knm.org.pl)
Sun, 20 Sep 1998 10:37:13 +0200 (EEST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Gordon Chaffee: "Partition table recovery program"
Previous message: Keith Owens: "Re: UDI and Politics (was Re: Linux, UDI and SCO.)"

On Sat, 19 Sep 1998, david wrote:
> > teardrop/IP fragmentation logging patch
> the reason why logging extra info on this has not been implemented before
> is because just about all exploits use spoofed src addresses. that makes
> logging the 'attacker' ips fairly useless to the admin and quite useful to
> the attacker because you're adding to the attack by flooding your log
> files.
You can just turn IP firewalling on. New ipchains code will block
and log the packets sent by teardrop.

Kris

-- Krzysztof G. Baranowski - President of the Harmless Manyacs' Club "Smith & Wesson - The original point and click interface..." http://www.knm.org.pl/ <prezes@manjak.knm.org.pl>

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Gordon Chaffee: "Partition table recovery program"
Previous message: Keith Owens: "Re: UDI and Politics (was Re: Linux, UDI and SCO.)"