At 15.03.2003 17:11 -0600, meor(_at_)mail(_dot_)SoftHome(_dot_)net wrote:
http://www.xwarzone.com/colin/overview.htm
Cool for bad guys who want to do denial of service attacks to freemailsers
like hotmail, gmx, etc. You would just have to get an account from one
freemailer and send hundrets of mails to several mailboxes at your own
pseudo server. Your pseudo server then behaves like the box at the
freemailer is unthrusted and replies with a uncrypted random message and a
different crypted random message. The freemailer's server will be unable to
find the right key. Even if there is a limit, how long the freemailer's
server will try to find the right key, it will take more (cpu) time than usual.
The situation would be even worse if someone overtakes a normal server and
replaces it with such a pseudo server. All servers sending messages to this
one would be slowed down.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg