[RC5] RC5 keys aren't the only things being cracked by the mi llion.

Adam Zilinskas AZilinskas at SolutionsIQ.com
Wed Oct 20 12:35:52 EDT 1999


RE:  http://www.viacorp.com/auditing.html
> ... an attempt to determine the security of most
> machines on the net, doing things "distributed.net style" : Compile a
> list of basic security flaws to check for, a list of machines to check
> them on, and throw hardware at it.

Well there is this article.
http://www.zdnet.com/zdnn/stories/news/0,4586,2376768,00.html

The summary is that there is a new kind of denial of service attack
 where many computers are used to take out a server.
 (a normal D O S attack, one machine goes out and does
  something to a server to either crash it or overwhelm
  it with traffic or tasks, given an understanding of
  the attack, the offending machine or task can be blocked).
  People are still studying on how to defend against this 
  without blocking legitamit uses.

 A problem with D.net doing something like this shotgun
  testing of security could turn thousnads of machines into
  a weapon like this group attack on a server. It could also
  happen inadvertently, imagine 10,000 machines going in 
 an attempting to hit a web page on a lowly server sitting on
 a 64Kbit ISDN line, the line quickly saturates and effectively 
 takes the server off the internet when they did not mean to.

                  Adam Zilinskas
                  Solutions IQ
                  azilinskas at solutionsiq.com

--
To unsubscribe, send 'unsubscribe rc5' to majordomo at lists.distributed.net
rc5-digest subscribers replace rc5 with rc5-digest



More information about the rc5 mailing list