Karl E. Jorgensen <[EMAIL PROTECTED]> wrote: > Doesn't this leave you open to DOS attacks? I'm thinking that source IP > addresses are relatively easy to forge, and hence an attacher can forge > a nimda attach and cause you to block off legitimate IP addresses - > ie. your DNS server our default gateway...
To forge a Nimda attack would require you to forge a TCP connection. That's not easy, unless the attacker is on the network path to the forged address. -- Sam Couter | Internet Engineer | http://www.topic.com.au/ [EMAIL PROTECTED] | tSA Consulting | OpenPGP key ID: DE89C75C, available on key servers OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
pgpoamPdjYhVq.pgp
Description: PGP signature