On Thu, 23 Dec 1999, Chris Bennett wrote about, Synflood Attack:
> Last night I was the Victim of a synflood attack.I Had thought that I had a
> pretty good Firewall set up with IP Chains I was able to sign ofline, block
> the offending packets and then go boack online (boy that made one hell of a
> log file!
> the attack used www.fbi.gov for a relay so I sent them an e-mail about the
> attack, but would like to know if there's sonthing I can do to prevent this
> from happening again
> If anyone has any experience in this area I would love to hear some
> sugestions
> What I would like to do is detact the attacks and then deny all conections
> from that IP Address.
Do you have "CONFIG_SYN_COOKIES" defined in your kernel ??.
If not remake the kernel and define it.
Read /usr/src/linux/Documentation/Configure.help
> REgards,
> Chris Bennett
--
Regards Richard
[EMAIL PROTECTED]
http://people.zeelandnet.nl/pa3gcu/
Merry Xmas.
