Michael Kassner of TechRepublic reports on a new and effective DoS attack.
Security researchers Jack C. Louis and Robert E. Lee of Outpost 24 stumbled onto a relatively simple way to implement a Denial of Service (DoS) attack that does not require massive SYN floods. The researchers aren’t releasing many details about the attack, except for those provided in a very interesting interview with Brenno de Winter.
Steve Gibson as part of the Security Now series did a podcast about Sockstress and then talked to Jack & Robert off the record about their exploit and the issue of releasing the knowledge of it into the public domain where it may be used maliciously.
The Security Now show notes include further details and links to all the coverage of Sockstress.
