Via Robert E. Lee's Blog -
In regards to Fyodor's article:
There are some really valid points made; While his article does describe some of how sockstress works and why it is efficient, it does not describe our attacks.
Jack would like to stress that turning off server side SYN-Cookie protection will not help and will only make you open to syn flood attacks again (as stated in Fyodor's article).
Also, scenarios that lead to systems being resource starved to the point of requiring a reboot is very attack and target specific. It is not as universal as causing a specific service to become unavailable. We have made this clear in all public communications, but it is worth saying again.
No comments:
Post a Comment