icmp problem

[Tom Nichols]

I've been running 4 DNS servers like this for over a year with no problems. Only
TCP packets and no external domain queries.
FYI...Theses are BSDI systems. I would never consider even attempting it on an NT
system. Been,done,didn't like it, wont do it again.

Brad Knowles wrote:

> At 8:47 AM -0500 3/14/01, Tom Nichols wrote:
>
> >  We turn off almost all UDP services to prevent our systems from
> >  responding to UDP floods. Works great.
>
>         Well, by default the DNS is a UDP protocol, so unless you want to
> end up generating your own ICMP storms in response to DNS queries,
> you might just want to rethink that particular idea.
>
> --
> Brad Knowles, <brad.knowles at skynet.be>
>
> #!/usr/bin/perl -w
> # 531-byte qrpff-fast, Keith Winstein and Marc Horowitz <sipb-iap-dvd at mit.edu>
> # MPEG 2 PS VOB file on stdin -> descrambled output on stdout
> # arguments: title key bytes in least to most-significant order
> # Usage:
> # qrpff 153 2 8 105 225 /mnt/dvd/VOB_FILE_NAME | extract_mpeg2 | mpeg2_dec -
> $_='while(read+STDIN,$_,2048){$a=29;$b=73;$c=142;$t=255;@t=map{$_%16or$t^=$c^=(
> $m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;$t^=(72, at z=(64,72,$a^=12*($_%16
> -2?0:$m&17)),$b^=$_%64?12:0, at z)[$_%8]}(16..271);if((@a=unx"C*",$_)[20]&48){$h
> =5;$_=unxb24,join"", at b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$
> d=unxV,xb25,$_;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=$t&($d>>12^$d>>4^
> $d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*8^$q<<6))<<9,$_=$t[$_]^
> (($h>>=8)+=$f+(~$g&$t))for at a[128..$#a]}print+x"C*", at a}';s/x/pack+/g;eval


-- Binary/unsupported file stripped by Listar --
-- Type: text/x-vcard
-- File: tomn.vcf
-- Desc: Card for Tom Nichols