| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 29 Aug 2003 08:06:13 +1200 From: "Steve Wray" <steve.wray@...adise.net.nz> To: "'Vladimir Parkhaev'" <vladimir@...bas.net>, "'William Warren'" <hescominsoon@...lphia.net> Cc: "'Fabio Gomes de Souza'" <bugtraq@....com.br>, <bugtraq@...urityfocus.com>, <full-disclosure@...ts.netsys.com> Subject: RE: AV "feature" does more DDoS than Sobig Wellllll best... but not impossible to do it at the firewall; you can do string matching in iptables (Linux). You might need a powerful computer and fast NICs tho otherwise performance might be a bit bad! ;) > -----Original Message----- > From: full-disclosure-admin@...ts.netsys.com > [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of > Vladimir Parkhaev > Sent: Friday, 29 August 2003 3:17 a.m. > To: William Warren > Cc: Fabio Gomes de Souza; bugtraq@...urityfocus.com; > full-disclosure@...ts.netsys.com > Subject: Re: [Full-Disclosure] AV "feature" does more DDoS than Sobig > > > Quoting William Warren (hescominsoon@...lphia.net): > > this is the very reason i block all executables at my > firewall...plus it > > reduces the load on my workstations from having to scan all that > > garbage..<G> > > firewall? the best place to block IMHO will be on mail gateways > ( you can bounce it with a nice message like 'atttachements of this > type are not welcome here' ).... > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Powered by blists - more mailing lists