> -----Original Message----- > From: Crist J. Clark [mailto:[EMAIL PROTECTED]] > Sent: Sunday, January 06, 2002 02:39 > To: Leo Bicknell > Cc: Rogier R. Mulhuijzen; [EMAIL PROTECTED] > Subject: Re: path_mtu_discovery [snip] > I'd support it if anyone actually has any credible evidence that such > attacks have ever occured. Or if there is are plausible ways to attack > that don't require someone to sniff and inject into a connection in > which the victim is participating (if you can do that, you can do much > worse).
The original message of the "old thread" mentioned: http://docs.freebsd.org/cgi/getmsg.cgi?fetch=4186+0+archive/2001/freebsd-sec urity/20010715.freebsd-security Darren Reed's post to BugTraq implied, IIRC, that an attacker can kill (or slow down) a server if he requests a large file with low MSS. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
