> We received a notification today, from a company that checks our network
for
> vulnerabilities, that the web servers we host are vulnerable to HPing
> (http://www.hping.org/). The company stated that using this tool it is
> possible to ping the box via port 80 and thus open to service denial
> attacks(?!).
It's the normal behaviour for a web server to answer requests on port 80,
every one of them could be subject to 'service denial attacks', meaning
access to the server can be denied (depending on the available resources) if
too many connections need to be served.
Looks like they don't really know what they're talking about.
Rob
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
