RE: dDoS attacks
Hi List, The host that is being attacked, there isn't much you can do about a dDos. I wonder on the other side what can be done (by pf) to prevent the host being used as a zombie spawning (spoofed) packets like mad. Anybody a clue? Sacha
RE: dDoS attacks
On Wed, 2002-11-06 at 07:13, Daniel Hartmeier wrote: There's a link to a patch for pf that allows further session limiting on honeynet.org. Thanks for the tip. Any plans to include this patch in future releases? -J. To answer Jason Dixon's question: -Original Message- From: Daniel Hartmeier [mailto:daniel;benzedrine.cx] Sent: woensdag 6 november 2002 13:22 To: Sacha Ligthert Subject: Re: dDoS attacks On Wed, Nov 06, 2002 at 01:19:53PM +0100, Sacha Ligthert wrote: Will this patch be added to the main pf devel repository one day? Have you read it and understand what it does? The tarball linked to contains a userland tool that does most of the work, but at a very high price. I guess we could make a port out of that. Daniel Sacha
Re: Book.
On Fri, 18 Oct 2002, Daniel Hartmeier wrote: A whole book is a lot of work :) There's probably not a large enough market for a traditionally published book (there aren't many paper books about OpenBSD in general, even) and for a non-commercial publication, time is the limit, as I can't afford that many weeks worth of unpaid work. Writing the book would probarbly stall development. If it wouldn't stall development newfeatures won't end up in the book. Let's put it this way: I can always work on improving the man pages and FAQ in smaller chunks, I think thats sufficient, but I think the initial post was asking for a step-to-step guide in Building PF firewalling rules. Sacha PS: Daniel, will you be at BSDconEurope? -- Bebe mi semen, bebelo hasta el fin Hocico - Sucios Pensamientos
