[Snort-users] DOS attacks

Giles Coochey gcoochey at ...14322...
Fri Mar 14 10:42:46 EDT 2008


Considering the real world,

Both the Land attack and Teardrop attack are specific attacks that
affected Microsoft implementations of the TCP/IP stack during and prior
to early service packs of NT4.

It's unlikely that any modern day IP stack is still vulnerable to these
types of attacks. And most long-distance attacks will fail anyway
because there are enough anti-spoofing and detection devices operating
at Layer-2 between the attacker and the intended victim.

I'm not saying that these attacks do not still need to be mitigated, but
I would have hoped that someone would have patched these machines by now
:-)




More information about the Snort-users mailing list