: [Full-Disclosure] RE: Attack profiling tool?
Lotsa available solution for that. IP Stack tunning and web
server such apache as u said... their are ways to set the rate
limit properly... and beside if ur web server behind a stateful
packet inspection fw it would prevent the attack the method
-Original Message-
From: Dimitris Chontzopoulos [mailto:[EMAIL PROTECTED]
Sent: Friday, July 11, 2003 15:19
To: 'Gareth Blades'
Subject: RE: [Full-Disclosure] RE: Attack profiling tool?
Sorry but I disagree. Firewalls don't defent against connection floods
(naptha type attacks
]
Sent: Friday, July 11, 2003 15:19
To: 'Gareth Blades'
Subject: RE: [Full-Disclosure] RE: Attack profiling tool?
Sorry but I disagree. Firewalls don't defent against connection floods
(naptha type attacks) very well at all
And what exactly can protect you against these attacks
this probing as I have seen the exact same profile of probing from at
least 4 different IP addresses.
-Original Message-
From: Abraham Lincoln [mailto:[EMAIL PROTECTED]
Sent: Friday, July 11, 2003 12:44
To: Gareth Blades
Subject: Re: [Full-Disclosure] RE: Attack profiling tool
-Original Message-
From: Ron DuFresne [mailto:[EMAIL PROTECTED]
Sent: 11 July 2003 17:37
To: Gareth Blades
Cc: Fulldisclosure
Subject: RE: [Full-Disclosure] RE: Attack profiling tool?
As to which tool is enacting the syn flood, it could be one of many, there
are quite a few