[clug] shimmer

[David Schoen]

2008/7/9 Sam Couter <sam at couter.id.au>:>
> Interesting. Kinda like port knocking on steroids.
>
> Just like port knocking, it looks like a way to make yourself vulnerable
> to very easy DoS attacks.

This may be a silly question, but how are DoS attacks easier with
something like that?
Assuming shimmerd blocks the offender in any sensible fashion (tell
iptables to drop packets from connecting ip, or even an snmp event
back to a router, to do the same thing) an attacker isn't even going
to get through to the application layer so the load on the server
should be greatly minimised, greatly reducing the effectiveness of a
DoS attack, not the other way around?


-- 
Dave.