The FreeBSD Ports Archive
FreeBSD security  : ddos_scan
Scans for a limited set of distributed denial of service agents
"dds" is a program to scan for a limited set of distributed denial of
service (ddos) agents.
At present, it scans for active instances of "trinoo", "Tribe Flood
Network" ("TFN") and "stacheldraht" agents, which were compiled
using the default values in known source distributions, such as those
found at:
http://packetstorm.securify.com/distributed/
It will *not* detect TFN2K agents.
For analyses of the three distributed denial of service attack
tools it scans for, and the methods being used by dds to identify
them, see:
http://staff.washington.edu/dittrich/misc/trinoo.analysis
http://staff.washington.edu/dittrich/misc/tfn.analysis
http://staff.washington.edu/dittrich/misc/stacheldraht.analysis
http://staff.washington.edu/dittrich/misc/ddos/
|
ddos_scan history
v. 1.8
date: 2003/02/20 18:59:04; author: knu; state: Exp; lines: +1 -0
De-pkg-comment.
v. 1.7
date: 2002/11/10 16:47:49; author: lioux; state: Exp; lines: +0 -2
o Rollback PORTCOMMENT modifications while this feature's implementation
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
v. 1.6
date: 2002/11/06 22:46:47; author: adamw; state: Exp; lines: +2 -0
Use PORTCOMMENT in the Makefile, and whack the pkg-comment.
Approved by: pat
v. 1.5
date: 2002/05/08 21:32:36; author: obrien; state: Exp; lines: +2 -2
To ports@freebsd.org.
v. 1.4
date: 2000/04/09 18:29:31; author: cpiazza; state: Exp; lines: +4 -4
Update with the new PORTNAME/PORTVERSION variables
v. 1.3
date: 2000/03/22 00:26:47; author: obrien; state: Exp; lines: +2 -1
Restore useless version required comments.
v. 1.2
date: 2000/03/20 02:36:15; author: obrien; state: Exp; lines: +1 -2
Remove the "version required" line.
v. 1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp;
branches: 1.1.1;
Initial revision
v. 1.1.1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp; lines: +0 -0
"dds" is a program to scan for a limited set of distributed denial of
service (ddos) agents.
At present, it scans for active instances of "trinoo", "Tribe Flood
Network" ("TFN") and "stacheldraht" agents, which were compiled
using the default values in known source distributions.
It will *not* detect TFN2K agents.
=============================================================================
v. 1.8
date: 2003/02/20 18:59:04; author: knu; state: Exp; lines: +1 -0
De-pkg-comment.
v. 1.7
date: 2002/11/10 16:47:49; author: lioux; state: Exp; lines: +0 -2
o Rollback PORTCOMMENT modifications while this feature's implementation
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
v. 1.6
date: 2002/11/06 22:46:47; author: adamw; state: Exp; lines: +2 -0
Use PORTCOMMENT in the Makefile, and whack the pkg-comment.
Approved by: pat
v. 1.5
date: 2002/05/08 21:32:36; author: obrien; state: Exp; lines: +2 -2
To ports@freebsd.org.
v. 1.4
date: 2000/04/09 18:29:31; author: cpiazza; state: Exp; lines: +4 -4
Update with the new PORTNAME/PORTVERSION variables
v. 1.3
date: 2000/03/22 00:26:47; author: obrien; state: Exp; lines: +2 -1
Restore useless version required comments.
v. 1.2
date: 2000/03/20 02:36:15; author: obrien; state: Exp; lines: +1 -2
Remove the "version required" line.
v. 1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp;
branches: 1.1.1;
Initial revision
v. 1.1.1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp; lines: +0 -0
"dds" is a program to scan for a limited set of distributed denial of
service (ddos) agents.
At present, it scans for active instances of "trinoo", "Tribe Flood
Network" ("TFN") and "stacheldraht" agents, which were compiled
using the default values in known source distributions.
It will *not* detect TFN2K agents.
=============================================================================
v. 1.8
date: 2003/02/20 18:59:04; author: knu; state: Exp; lines: +1 -0
De-pkg-comment.
v. 1.7
date: 2002/11/10 16:47:49; author: lioux; state: Exp; lines: +0 -2
o Rollback PORTCOMMENT modifications while this feature's implementation
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
v. 1.6
date: 2002/11/06 22:46:47; author: adamw; state: Exp; lines: +2 -0
Use PORTCOMMENT in the Makefile, and whack the pkg-comment.
Approved by: pat
v. 1.5
date: 2002/05/08 21:32:36; author: obrien; state: Exp; lines: +2 -2
To ports@freebsd.org.
v. 1.4
date: 2000/04/09 18:29:31; author: cpiazza; state: Exp; lines: +4 -4
Update with the new PORTNAME/PORTVERSION variables
v. 1.3
date: 2000/03/22 00:26:47; author: obrien; state: Exp; lines: +2 -1
Restore useless version required comments.
v. 1.2
date: 2000/03/20 02:36:15; author: obrien; state: Exp; lines: +1 -2
Remove the "version required" line.
v. 1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp;
branches: 1.1.1;
Initial revision
v. 1.1.1.1
date: 2000/02/14 01:58:37; author: obrien; state: Exp; lines: +0 -0
"dds" is a program to scan for a limited set of distributed denial of
service (ddos) agents.
At present, it scans for active instances of "trinoo", "Tribe Flood
Network" ("TFN") and "stacheldraht" agents, which were compiled
using the default values in known source distributions.
It will *not* detect TFN2K agents.
=============================================================================
|
| |
|