From owner-doc-jp@jp.freebsd.org  Thu Dec 24 00:49:14 1998
Received: (from daemon@localhost)
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) id AAA27449;
	Thu, 24 Dec 1998 00:49:14 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from smtp1.dti.ne.jp (smtp1.dti.ne.jp [210.170.128.121])
	by jaz.jp.freebsd.org (8.9.1+3.1W/8.7.3) with ESMTP id AAA27444
	for <doc-jp@jp.freebsd.org>; Thu, 24 Dec 1998 00:49:13 +0900 (JST)
	(envelope-from y-koga@jp.FreeBSD.org)
Received: from localhost (INS260.yokohama-ap4.dti.ne.jp [210.159.153.30]) by smtp1.dti.ne.jp (8.9.0/3.7W) with ESMTP id AAA06426; Thu, 24 Dec 1998 00:49:10 +0900 (JST)
Message-Id: <199812231549.AAA06426@smtp1.dti.ne.jp>
To: doc-jp@jp.freebsd.org
In-Reply-To: <19981223233804H.daichi@ongs.net>
References: <199812221849.TAA09347@gvr.gvr.org>
	<19981223184706E.njt@nn.iij4u.or.jp>
	<19981223233804H.daichi@ongs.net>
X-Mailer: Mew version 1.94b2 on Emacs 19.28 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Date: Thu, 24 Dec 1998 00:49:15 +0900
From: Koga Youichirou <y-koga@jp.freebsd.org>
X-Dispatcher: imput version 981124(IM104)
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+981115
X-Sequence: doc-jp 5703
Subject: [doc-jp 5703] Re: ANNOUNCE: CERT Advisory CA-98.13 - TCP/IP Denial of Service (fwd)
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: y-koga@jp.freebsd.org

$B8eF#$5$s(B:
> # $B0lF|$K;0$D$N(B ANNOUNCE Mail $B$r<j$,$1$?$N$O$O$8$a$F$C$9(B :)
> # $B$o!<$$(B :-)

$B$46lO+MM$G$9!#(B

> ------------------------------------------------------------------------
> $B$*CN$i$;(B: CERT $B4+9p(B CA-98.13 - TCP/IP $B%5!<%S%9K832(B (fwd)

$B!V(Bfwd$B!W$O!VE>Aw!W$G$7$g$&!#(B

> $B:rF|2<5-$N4+9p$,(B CERT $B$h$jI=L@$5$l$^$7$?(B. $B$3$l$O(B FreeBSD $B$K$b3:Ev$9$k$b(B
> $B$N$G(B, FreeBSD $B$K$1$kE,@Z$J%a!<%j%s%0%j%9%H$KE>Aw$7$^$9(B. $B$3$N7o$K4X$9$k(B 

s/$B$K$1$k(B/$B4XO"$N(B/ $B$/$i$$$+$J!)(B

> CERT $B4+9p(B CA-98-13-tcp-denial-of-service
> 
>    $B86J8$NH/9TF|(B: December 21, 1998

$BF|IU$O$J$<Lu$5$J$$$N$G$7$g$&!)(B

>    $B:G=*D{@5(B

$B99?7$/$i$$$K$7$^$7$g$&!#<B:]$K$O=$@5$,2C$o$C$?$j!"%W%i%C%H%U%)!<%`$K4X(B
$B$9$k>pJs$rDI2C$7$?$j$H$$$C$?$3$H$,9T$o$l$k$H!"$3$3$K$=$l$K$D$$$F$N>pJs(B
$B$,IU2C$5$l$k$N$G$9!#8=:_$O(B initial version $B$H$$$&$3$H$G$9!#(B

$B0J9_!"!V$G$9!&$^$9!WD4$h$j$O!V$@!&$G$"$k!WD4$NJ}$,$h$$$H;W$$$^$9!#(B

> $B1F6A$r<u$1$k%7%9%F%`(B
>    BSD $BM3Mh$N(B TCP/IP $B%9%?%C%/$r;}$D%7%9%F%`$N$&$A$N$$$/$D$+(B. $B40A4$J%j%9(B
>    $B%H$K$D$$$F$OIUO?(B A $B$r$4Mw$/$@$5$$(B. 

$B1F6A$r<u$1$k%7%9%F%`$N40A4$J%j%9%H$K$D$$$F$O!D;2>H$N$3$H!#(B
Appendix $B$O$=$N$^$^$K$7$?$$!#(B

>    $BMW$G(B, $B967b<T$OK\Ev$N%"%I%l%9$r1#$9$?$a$KH/?.%"%I%l%956B$(B (source-address 
>    spoofing) $B$r$9$k$3$H$,$G$-$^$9(B.

source address $B$C$F!"(BComer $BK\$G$O!V;OE@%"%I%l%9!W$@$1$I!"2?$,0lHLE*$+(B
$B$J!)(B

> I. $B>\:Y(B

$B2r@b!)(B

>    $B7A$N$U$k$^$$$r$5$;$k$3$H$,$G$-$^$9(B. $B$3$l$O(B

>        http://www.cert.org/advisories/CA-97.28.Teardrop_Land.html

$B$K5-=R$5$l$F$$$k$b$N$r4^$`!"B>$N%5!<%S%9K832(B (denial-of-service) $B967b$H(B
$BF1MM$N1F6A$,$"$k!#(B

$B!tJB$YJQ$($J$I!#(B

>    $BFC$K(B, $B$3$N<eE@$HH/?.(B IP $B%"%I%l%956B$(B (IP-source-address spoofing) $B$r(B

IP$B$N;OE@%"%I%l%9(B

>    $BAH9g$o$;$k$3$H$G(B, $B967b<T$N>l=j$rFM$-;_$a$k$3$H$r:$Fq(B, $B$J$$$7IT2DG=$K(B

s/$B>l=j(B/$B0LCV(B/ $B$NJ}$,$$$$$G$7$g$&!#(B

> II. $B1F6A(B
> 
>    $B$3$N<eE@$r;}$D%^%7%s$rC/$G$b%j%b!<%H$+$i%/%i%C%7%e$5$;$?$j%O%s%0$5$;(B
>    $B$k$3$H$,$G$-$^$9(B. $B$^$?%7%9%F%`$KM=B,$G$-$J$$7A$N$U$k$^$$$r$5$;$k$3$H(B
>    $B$,2DG=$G$9(B. 

s/$B$^$?(B/$B$"$k$$$O(B/

>    $BIUO?(B A $B$O(B, $B$3$N4+9p$K>pJs$rDs6!$7$F$/$@$5$C$?%Y%s%@$+$i$NF~NO$r4^$s$G(B

$B!VF~NO!W$O$A$g$C$H$$$?$@$1$J$$$G$9!#0ULu$7$F!"!V$3$N4+9p$K4X$9$k%Y%s%@(B
$B$+$i$N>pJs$r4^$s$G$$$k!#!W$G$7$g$&!#(B

> B. $BH/?.%"%I%l%956B$$rKI$0$h$&$K%k!<%?$d%U%!%$%"%&%)!<%k$r@_Dj$9$k(B
> 
>    $B2f!9$OH/?.%"%I%l%956B$$r9T$&967b<T$r8:$i$9$h$&$K%k!<%?!<$d%U%!%$%"%&%)!<(B

$B!V2f!9$O!WITMW!#(B

>    $B%k$rD4@0$9$k$3$H$r>)Ne$7$F$$$^$9(B. $B:#$N$H$3$m%M%C%H%o!<%/$KN.$l$kB?$/(B

s/$BD4@0(B/$B@_Dj(B/

>    $B$N(B IP $B56B$%Q%1%C%H$r8:$i$9$?$a$N:GNI$N<jCJ$O(B, $BDL2a;~$KH/?.%"%I%l%9$r(B
>    $BMW5a$9$k$h$&$K$9$k%U%#%k%?!<$r%k!<%?$K%$%s%9%H!<%k$9$k$3$H$G$9(B. $B$3$N(B

$BDL2a;~$KFbIt$N!D(B
s/$B%U%#%k%?!<(B/$B%U%#%k%?(B/

>    $B<j$N%U%#%k%?$O30It%M%C%H%o!<%/$+$i$d$C$F$/$k$9$Y$F$N%Q%1%C%H$r%U%#%k(B
>    $B%?%j%s%0$9$k$3$H$GH/?.(B IP $B%"%I%l%956B$967b$rL58z$K$7$^$9(B. 

outgoing $B$J$N$G5U$G!"$3$3$G8@$C$F$$$k$N$O!"H/?.$9$kB&$N%5%$%H$G;OE@(BIP
$B$r56B$$7$?%Q%1%C%H$r;_$a$k$3$H$G8:$i$7$F$$$-$^$7$g$&$H$$$&$3$H$G$9!#(B

>    $B$3$N<j$N%U%#%k%?%j%s%0$K4X$9$k>\:Y@bL@$O(B Cisco Systems, Inc. $B$N(B Paul
>    Ferguson $B$,Ds=P$7$?(B RFC 2267$B!H(BNetwork Ingress Filtering: Defeating
>    Denial of Service Attacks which employ IP Source Address Spoofing$B!I$r(B
>    $B$4Mw$/$@$5$$(B.

s/$B$,Ds=P$7$?(B/$B$K$h$k(B/
$B$"$H!"(BBlazenet, Inc. $B$N(B Daniel Senie $B$,>C$($F$^$9!#(B

>    $B4IM}$7$F$$$k%5%$%H$NN>J}$K4+$a$F$$$^$9(B. $B8=9T$N%I%-%e%a%s%H$O2<5-$r$4(B
>    $BMw$/$@$5$$(B. 

$B$3$N(B RFC $B$O0J2<$+$iF~<j$G$-$^$9!#(B

>    $B>e5-$N%?%$%W$N%U%#%k%?%j%s%0$O967b<+BN$+$i%5%$%H$r<i$k$o$1$G$O$J$$$3(B
>    $B$H$KCm0U$7$F$/$@$5$$(B. $B967b<T$N>l=j$r1#$9G=NO$r2<$2(B, $B967b$r;W$$$H$I$^(B
>    $B$i$;$k$@$1$G$9(B.

s/$B>l=j(B/$B0LCV(B/

> $B9W8%<T(B
> 
>     $B$3$N<eE@$N%*%j%8%J%k$O(B Cambridge Technology Partners $B%(%s%?!<%W%i%$(B

$B$3$N<eE@$O!"!D$K$h$C$F:G=i$KH/8+$5$l$^$7$?!#(B

>     $BK\%I%-%e%a%s%H$O2<5-$r;2>H$7$F$/$@$5$$(B:

$B2<5-$+$iF~<j$G$-$^$9!#(B

> CERT/CC $BO"Mm@h(B
> 
>     Email: cert@cert.org
>            $BEEOC(B: +1 412-268-7090 (24-hour hotline)
>            $B%U%!%C%/%9(B: +1 412-268-6989

FAX: $B$K$7$^$7$g$&$h!#(B

>            $BM9JX%"%I%l%9(B:

$B=;=j(B: $B$G$7$g$&(B

>      CERT $B%Q!<%=%J%k%"%s%5!<%[%C%H%i%$%s(B 08:00-20:00 EST(GMT-5) / EDT(GMT-4)
>      $B<+7nMK(B  $BKx6bMK(B;  $B=5Kv$dJF9q5YF|$K$O6[5^HI$,EEOC$r$*<u$1$7$^$9(B. 

not personal but personnel...
$B!A$N4V!"(BCERT $B?&0w$O%[%C%H%i%$%s$K$FBP1~$7$^$9!#(B

> $B0E9f$NMxMQ(B
> 
>      $B5!L)$N9b$$>pJs$O0E9f2=$7$F$+$i(B E$B%a!<%k(B $B$k$9$h$&$K6/$/4+$a$F$$$^$9(B. 

s/E$B%a!<%k(B $B$k$9(B/$B%a!<%k$GAw$k(B/

>      $B2f!9$N(B PGP $B8x3+80$O(B http://www.cert.org/CERT_PGP.key $B$K$F$4Mw$K$J$l(B
>      $B$^$9(B. $B$b$7(B DES $B$NMxMQ$r$*K>$_$G$7$?$i(B CERT $B%[%C%H%i%$%s$K$F>\:Y$r$*(B
>      $BJ9$-$/$@$5$$(B. 

s/$B$4Mw$K$J$l$^$9(B/$BF~<j$G$-$^$9(B/

>    $B2f!9$N%a!<%j%s%0%j%9%H$K2C$o$C$F4+9p$d9-Js$rCN$j$?$$$H$$$&J}$O(B 
>    subject $B$K(B SUBSCRIBE your-email-address $B$r$45-F~$N>e(B 

s/your-email-address $B$r(B/$B$"$J$?$N%a!<%k%"%I%l%9$H(B/

>    cert-advisory-request@cert.org $B$^$G(B E$B%a!<%k$r$*4j$$$7$^$9(B. 

$B%a!<%k$7$F$/$@$5$$!#(B

>    Copyright 1998 Carnegie Mellon University.
>    $BMxMQ>r7o(B, disclaimers, and sponsorship information $B$O(B 

disclaimers $B$O$J$s$FLu$=$&$+!#!#!#(B
sponsorship information $B$O%9%]%s%5!<>pJs$@$m$&$J!#(B

>     * CERT $B$O(B U.S. Patent $B$H(B Trademark Office $B$K$FEPO?$5$l$F$$$^$9(B

U.S. Patent and Trademark Office $B$G0l$D$NLr=j$@$H;W$&!#(B

>     $BD{@5MzNr(B

$B2~DjMzNr(B
----
$B$3$,$h$&$$$A$m$&(B
