by redmail.netbsd.org with SMTP; 10 Feb 2000 00:39:15 -0000
	by mono.org (8.8.8/8.8.8) id UAA18666;
	Wed, 9 Feb 2000 20:48:45 GMT
Date: Wed, 9 Feb 2000 20:48:45 +0000 (GMT)
From: David Brownlee <abs@netbsd.org>
To: Paul Hoffman <phoffman@proper.com>
cc: tech-security@netbsd.org
Subject: Re: Checking for DDOS tools
In-Reply-To: <4.2.1.20000209121256.00bb06a0@mail.imc.org>
Message-ID: <Pine.NEB.4.21.0002092045350.22416-100000@oblivion.mono.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

	I believe the attacking tools have generally only been found on
	Linux and Solaris boxes, hence the lack of a detector for NetBSD.
	I think it would be very good if a NetBSD version was available.
	
	Have you tried contacting NIPC to see if they would release a
	NetBSD version?

		David/absolute

On Wed, 9 Feb 2000, Paul Hoffman wrote:

> Greetings. The CERT folks coverage of the Trinoo-type DDOS tools 
> <http://www.cert.org/advisories/CA-2000-01.html> has pointers to the FBI 
> site <http://www.fbi.gov/nipc/trinoo.htm>, where they have tools that run 
> only under Solaris and Linux.
> 
> Are there equivalent tools for NetBSD? Has anyone run the Linux tools under 
> NetBSD?
> 
> Also, the archive for this mailing list seems to have died in August of 
> last year. Is there someone here who can whack it on the side and get it to 
> wake up and come up to date?
> 
> --Paul Hoffman
>