Re: Recent Attacks

From: Iván Arce (
Date: Wed Feb 16 2000 - 14:52:30 PST

  • Next message: Michael.Eberleat_private: "FW1 and Esafe Protect Gateway"

    "Starkey, Kyle" wrote:
    > I don't believe that this was the total objective.  I believe (and this is
    > only conjecture) that their point was the actual vulnerability itself.  The
    > DoS and the newly created DDos attacks are VERY simple to use and widely
    > available.  I think the point was "Hey, check out this great piece of code
    > that is really easy to use and the MAJOR players on the internet are still
    > vulnerable."  I am hopeing it was more of a wake up call than it was
    > malicious, but who knows.
    Hmm, its not that MAJOR players on the internet are 'still' vulnerable,
    really not many things you can do to protect yourself from being a
    At least, there's not many things to do just by yourself.
    For me, if this is a wake up call as you say, its only to make people on
    internet realize that they have responsibilities towards other users. 
    And one of them is to make all possible efforts to guarantee that their
    systems are not going to be used as weapons to scale attacks against
    None of this would happened if every ISP blocked outbound spoofed
    if every MTA is configured properly to avoid spamming and relaying, if
    egress filtering is in place, etc.
    And lets say it, all this attacks have been known for years and have
    been detected for at least months. It just pisses me off that only
    after a simultaneous attack to several highly media-exposed targets
    everyone suddenly realizes that the net is not and will not be a safe
    if one doesn't care about safety.
    "Understanding. A cerebral secretion that enables one having it to know
     a house from a horse by the roof on the house,
     It's nature and laws have been exhaustively expounded by Locke,
     who rode a house, and Kant, who lived in a horse." - Ambrose Bierce
    ==================[ CORE Seguridad de la Informacion S.A. ]=========
    Iván Arce
    PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836  B25D 207B E78E 2AD1 F65A
    email   :
    Pte. Juan D. Peron 315 Piso 4 UF 17
    1038 Capital Federal
    Buenos Aires, Argentina.              Tel/Fax : +(54-11) 4331-5402
    Casilla de Correos 877 (1000) Correo Central
    --- For a personal reply use

    This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:04:26 PDT