| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 5 Feb 2008 17:48:37 +0100 From: Andi Kleen <andi@...stfloor.org> To: Alan Cox <alan@...rguk.ukuu.org.uk> Cc: Andi Kleen <andi@...stfloor.org>, Glenn Griffin <ggriffin.kernel@...il.com>, netdev@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH] Add IPv6 support to TCP SYN cookies On Tue, Feb 05, 2008 at 04:03:01PM +0000, Alan Cox wrote: > > Also your sub PC class appliances rarely run LISTEN servers anyways > > that are open to the world. > > Really. The ones that first come to mind often have exposed ports > including PDA devices and phones. (Ditto low end PC boxes - portscan an > EEPC some day ;)) What kind of LISTEN ports? And does it matter if they're DoS'ed? The only one I can think of right now would be ident and frankly nobody will really care if that one works or not. If it's just the management interface etc. (which should really be firewalled) then likely not. > Is the other stuff enough - good question, and can be measured easily > enough on a little dlink router or similar. My guess would be that it is. If it's not it would be probably better to look at improving the standard queue management again; e.g.readd RED. -Andi -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists