| 1 |
Who gives a shit if a script kiddie gets his box |
| 2 |
rebooted for doing something he shouldnt be doing in |
| 3 |
the first place. This looks like an active defense, |
| 4 |
and I would definitely like to see the results if you |
| 5 |
finish your project brian! |
| 6 |
|
| 7 |
|
| 8 |
--- ascii <ascii@××××××××.com> wrote: |
| 9 |
|
| 10 |
> Brian Micek wrote: |
| 11 |
> > Please lets forget about this thread because its |
| 12 |
> going nowhere and once |
| 13 |
> > again, I apologize about all this spam. |
| 14 |
> |
| 15 |
> yeah, i love BOFH : ) but the argue about cpu and |
| 16 |
> bandwith waste is real |
| 17 |
> |
| 18 |
> don't care who say you can't send random data on |
| 19 |
> request, we are free to |
| 20 |
> reply what we want on a request (also some ascii |
| 21 |
> p*rn is a good idea) |
| 22 |
> |
| 23 |
> if you are using tcpd consider to do something like |
| 24 |
> catting some random |
| 25 |
> data to a file and then stream the file (no disk i/o |
| 26 |
> since linux has |
| 27 |
> caching, low cpu usage) |
| 28 |
> |
| 29 |
> remember also you are sending some of your precious |
| 30 |
> *true* random data |
| 31 |
> to the bad guy (i'm not able to exploit or predict |
| 32 |
> the next random bit |
| 33 |
> but i heard somebody on the globe is able to.. so be |
| 34 |
> paranoid :P ) |
| 35 |
> |
| 36 |
> also the client will break the tcp stream on X null |
| 37 |
> chars or something |
| 38 |
> like that so use a file and close the connection at |
| 39 |
> some poit is good |
| 40 |
> to prevent bandwith waste (don't let the client |
| 41 |
> decide) |
| 42 |
> |
| 43 |
> an other thing to consider is ip spoofing, but who |
| 44 |
> cares : ) |
| 45 |
> |
| 46 |
> just my 901 bytes opinion.. |
| 47 |
> -- |
| 48 |
> gentoo-security@g.o mailing list |
| 49 |
> |
| 50 |
> |
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
__________________________________ |
| 57 |
Yahoo! Mail - PC Magazine Editors' Choice 2005 |
| 58 |
http://mail.yahoo.com |
| 59 |
-- |
| 60 |
gentoo-security@g.o mailing list |
Archives