On 16/09/2020 09:11, Mark Andrews wrote:
> There are a number of issues.
> Stupid firewalls that block PTB messages. Solution, fragment at network MTU.
Let me rephrase that for you: "Solution, fragment at network MTU (a
value that you cannot efficiently discover)."
--
Cheers,
Jeremy
___
On 29/11/2019 19:34, Tony Finch wrote:
> Attackers can get a small amplification from SYN/ACK retries, and this is
> being used in the wild.
>
> https://www.darkreading.com/attacks-breaches/new-ddos-attacks-leverage-tcp-amplification-/d/d-id/1336339
This isn't small. It'd be good to know _what_