Re: udp packet storms

Perry E. Metzger (perry@imsi.com)
Tue, 01 Nov 1994 09:05:20 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Stephen Harold Goldstein: "Vulnerability Analysis Tools"
Previous message: Steve Simmons: "Re: udp packet storms"
In reply to: Steve Simmons: "Re: udp packet storms"
Next in thread: Tim Newsham: "Re: udp packet storms"

Steve Simmons says:
> This leads to a bug I've literally been afraid to test:
> 
> How about forging a ping packet with source and destination
> address YOUR.NET.HERE.255?  Should cause a brief but interesting
> storm, while doing only minimal loading on the forger.

The RFCs specify that you must never respond to an ICMP request with a
broadcast. However, this may work with UDP echo ports on hosts with
defective behavior of the sort we've just been noting.

Perry

Next message: Stephen Harold Goldstein: "Vulnerability Analysis Tools"
Previous message: Steve Simmons: "Re: udp packet storms"
In reply to: Steve Simmons: "Re: udp packet storms"
Next in thread: Tim Newsham: "Re: udp packet storms"