[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] New type of DoS Attack - Reflected Denial of Service
- Subject: Re: [cobalt-users] New type of DoS Attack - Reflected Denial of Service
- From: David Lucas <david@xxxxxxxxxxxxxxxx>
- Date: Sat Mar 2 05:57:31 2002
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
At 03:07 PM 3/2/2002, you wrote:
>http://www.grc.com
>
>Here's a quick synopsis; with a link to the actual PDF written by Steve
>Gibson. In essence, a malicious user sends forged SYN packets to TCP/IP
>http://list.cobalt.com/mailman/listinfo/cobalt-users
>
>
I wouldnt take "top security expert" Steve Gibson too seriously.
Read the following about his SYN packet work:
http://www.theregister.co.uk/content/55/24189.html
Steve Gibson advice should be taken with a grain of salt.
So should his critics. Most of his critics seem to come from the world of
hackers. Most of his tools are quite good and do work. People make
work-arounds to some of them and then criticize is results. An example is
Black Ice firewall. He says he can get through it. Black Ice says they
know him and are letting him through. Other firewalls won't let him through.
The register criticizes his results by an unnamed person. Most reports
blasting name unnamed people or people by hacker handles. It also seems
this type of article is the norm on The Register. Try reading a few
articles on the other side of the fence and even things out a little.
BTW, the FBI used a tool he wrote and one of the major security
organizations uses one of his tools to help people. I don't think he is
just claiming to be a security expert on his own.