I'm at a bit of an advantage here - as I've been following this development on the Gibson news-server. The impression I've got from there is that it's definitely client-browser driven (the initial product anyway), with specific 'sniffing' for MS vunerabilities (netbios ports, trojan open ports, personal firewalls etc). Still interested to what will happen when I get my *NIX box inbetween though....
SYN Cookies and this GENISIS token business are used to defend against SYN floods - or at least allow 'true' packets through the noise during an attack.
There are a lot more types of DOS and DDOS attacks than SYN floods - unfortunately.
Um, not sure that's what the site says..... True, it reports: "Therefore, in the future we will offer an advanced, Windows-only, client-side NanoProbe Agent for use in concert with our server-side NanoProbe Technology.", but the majority of the page refers to the scan being initiated from the server to the source address of the browser.
Steve
Slashdot Mirror
I'm at a bit of an advantage here - as I've been following this development on the Gibson news-server. The impression I've got from there is that it's definitely client-browser driven (the initial product anyway), with specific 'sniffing' for MS vunerabilities (netbios ports, trojan open ports, personal firewalls etc). Still interested to what will happen when I get my *NIX box inbetween though....
SYN Cookies and this GENISIS token business are used to defend against SYN floods - or at least allow 'true' packets through the noise during an attack. There are a lot more types of DOS and DDOS attacks than SYN floods - unfortunately.
Um, not sure that's what the site says..... True, it reports: "Therefore, in the future we will offer an advanced, Windows-only, client-side NanoProbe Agent for use in concert with our server-side NanoProbe Technology.", but the majority of the page refers to the scan being initiated from the server to the source address of the browser. Steve