Date: Thu, 30 Mar 2006 14:16:38 +0100
From: Tomasz Chomiuk <t.chomiuk@wp.pl.>
To: bugtraq@securityfocus.com
Subject: Smurfable Linux Kernel
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Originating-Heisenberg-IP: [82.69.89.236]
X-Virus-Scanned: antivirus-gw at tyumen.ru
Hi list,
A couple of months ago I pointed out to the Linux Kernel networking
maintainers an oversight which caused the kernel to be vulnerable to
some form of smurf attack.
The problem lay in the kernel's inability to ignore icmp timestamp
broadcast requests, thus IP networks with Linux boxes on board could
lend themselves to possible DoS attacks.
The problem was fixed straight away and is now missing from the 2.6.13
branch. Described misbehavior can now be controlled via
icmp_echo_ignore_broadcasts sysctl.
- Tomek
