Re: Questions about adding additional connections to a session

To: Julian Satran <Julian_Satran@il.ibm.com>
Subject: Re: Questions about adding additional connections to a session
From: Bill Studenmund <wrstuden@wasabisystems.com>
Date: Sat, 16 Nov 2002 20:14:56 -0800 (PST)
Cc: <ips@ece.cmu.edu>, <owner-ips@ece.cmu.edu>
Content-Type: TEXT/PLAIN; charset=US-ASCII
In-Reply-To: <OF01A74DD4.60191D29-ONC2256C73.001907C3-C2256C73.001A5612@telaviv.ibm.com>
Sender: owner-ips@ece.cmu.edu

On Sat, 16 Nov 2002, Julian Satran wrote:

> Bill,
>
> You want to work both without a security envelope and to resist an active
> attack...

Agreed.

> If you keep letting in in your hypothetical attacker time after time then
> you certainly  have a pretty weak security.
> This type of attacks are not uncommon on servers with a limited number of
> threads and the can be stopped by blocking the intruder through some other
> means (IP address filtering etc.).

Just to run with the idea, say the attacker is a hostile process on the
initiator? :-)

> And regardless of when you declare a connection in session and count it in
> the limit - this type of attack will consume some resources if it reaches
> your system.

Agreed.

Take care,

Bill

References:
- Re: Questions about adding additional connections to a session
  - From: "Julian Satran" <Julian_Satran@il.ibm.com>

Prev by Date: Re: Questions about adding additional connections to a session
Next by Date: Re: iSCSI: Questions about adding additional connections to a session
Prev by thread: Re: Questions about adding additional connections to a session
Next by thread: IPS-ALL: Four WG Last Calls
Index(es):
- Date
- Thread

Home

Last updated: Sun Nov 17 21:18:54 2002
12032 messages in chronological order