Subject: Re: broadcast ping response
To: John Nemeth <email@example.com>
From: Kentaro A. Kurahone <firstname.lastname@example.org>
Date: 01/23/2005 04:21:59
On Sat, Jan 22, 2005 at 09:50:55PM -0500, Allen Briggs wrote:
> What else?
> Kurahone-san's patch seems pretty trivial, but I'm not sure how
> real the need is...
FWIW, CERT recomends disabling responding to broadcast ICMP packets when
dealing with smurf attacks, and it looks like a lot of the other unixes
provide a simple tunable, or disable response by default.
Kentaro A. Kurahone
SIGUSR1 Research and Development