At 03:06 PM 8/26/01 +0530, Philip wrote:
udp has no source address, so although tcpd will work, there's no way it can do source ip based filtering.
How does one respond to the UDP message (if you want to) then? UDP does not do handshakes and connection establishment but I think it has source address. In fact, is there any packet without source address?? Wouldnt it, then, be _very_ easy just send n number of packets to some particular destination to flood it? I used to think that for DoS or DDos they generally construct their own headers with _spoofed_ source IP's. But I also hear that newer Routers can be configured not to forward (outgoing) packets if their source IP's do not belong to their subnet.
quasi
_________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com