You may simply be busying out the IPChains. DoS attacks aren't well
protected against in the IPChains code. 2.4 with the more detailed
packet filtering et all. seems to be much more robust.
Ping of Death usually refers to a system crashing due to large
pings. It would be interesting to see if the nic recovered after the
attack or remained unreachable.
Wilfred Ling writes:
> Hi,
>
> Does anybody knows whether is Linux 2.2.17 vulnerable to ping of death -
> especially the kind of ping with a large size? I tried the following:
>
> ping -s 65000 -n -f x.y.z.w
>
> Where x.y.z.w is the IP address of my machine in which the ethernet
> interface is heavily guarded with ipchains firewall rules. I've found that
> after pinging for about 30 seconds, the ethernet interface is no more able
> to receive packets. I've found that without guarding the interface with
> ipchains, the problem does not exist.
>
> Wilfred
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
