On Sun, Jul 07, 2002 at 04:16:12PM -0400, [EMAIL PROTECTED] wrote: > On Sun, 07 Jul 2002 12:45:13 PDT, Clayton Fiske <[EMAIL PROTECTED]> said: > > > Don't forget 3) the machine compromised isn't capable of spoofing. > > In Win95/98/ME/NT, there is no raw socket functionality. I don't > > The fact that there is no raw socket *API* doesn't mean it's that much > more difficult to convince the device driver to send a packet that isn't > strictly kosher.
Sure, but the idea that the kids doing the harvesting a) know how to do such a thing and b) care if the compromised machine is traced is a stretch in my mind. As a previous poster said, if a DDoS comes from enough different sources, it doesn't matter if they're really spoofed or not. -c
