[RC5] RC5 keys aren't the only things being cracked by the mi
AZilinskas at SolutionsIQ.com
Wed Oct 20 12:35:52 EDT 1999
> ... an attempt to determine the security of most
> machines on the net, doing things "distributed.net style" : Compile a
> list of basic security flaws to check for, a list of machines to check
> them on, and throw hardware at it.
Well there is this article.
The summary is that there is a new kind of denial of service attack
where many computers are used to take out a server.
(a normal D O S attack, one machine goes out and does
something to a server to either crash it or overwhelm
it with traffic or tasks, given an understanding of
the attack, the offending machine or task can be blocked).
People are still studying on how to defend against this
without blocking legitamit uses.
A problem with D.net doing something like this shotgun
testing of security could turn thousnads of machines into
a weapon like this group attack on a server. It could also
happen inadvertently, imagine 10,000 machines going in
an attempting to hit a web page on a lowly server sitting on
a 64Kbit ISDN line, the line quickly saturates and effectively
takes the server off the internet when they did not mean to.
azilinskas at solutionsiq.com
To unsubscribe, send 'unsubscribe rc5' to majordomo at lists.distributed.net
rc5-digest subscribers replace rc5 with rc5-digest
More information about the rc5