Welcome to Friendica.Eskimo.Com

Home of Censorship Free Hosting

E-mail, Web Hosting, Linux Shell Accounts terminal or full remote desktops.

Sign Up For A Free Trial Here

Please tell your friends about federated social media site that speaks several fediverse protocols thus serving as a hub uniting them, hubzilla.eskimo.com, also check out friendica.eskimo.com, federated macroblogging social media site, mastodon.eskimo.com a federated microblogging site, and yacy.eskimo.com an uncensored federated search engine. All Free!

Børge

11 hours ago (Received 2 hours ago)

Børge
11 hours ago (Received 2 hours ago)

The other day I learnt that enabling syncookies in pf on OpenBSD lights up your server like a Christmas tree. Or in other words, it made the server respond to _every_ incoming tcp syn packet with syn/ack, making the bots scanning the internet think the port was open, even though the final ack would be dropped when rules were then evaluated. This increased scanning by a lot! Or so it seemed to me at least.

The reason for this experimentation was I got to experience what I think was a tiny syn-flood attack, and I was trying things to see what I could do to mitigate on my end.

I'll maybe write more about this after the holidays.

in reply to Børge

picofarad

in reply to Børge 2 hours ago

is the syn flood the christmas tree attack (or scan)? One of the old ones would light every port on a hub up at the same time and make everything go crazy

This entry was edited (2 hours ago)