[unisog] anyone else seeing lots of popup spam/malware?

Gary Flynn flynngn at jmu.edu
Fri Oct 28 12:54:56 GMT 2005


John Kristoff wrote:

> On Wed, 26 Oct 2005 10:18:44 -0500 (EST)
> John Rowan Littell <littejo at earlham.edu> wrote:
> 
> 
>>Is there any good reason not to block UDP port 0 packets on general
>>principle?
> 
> 
>>From RFC 768:
> 
>   Source Port is an optional field, when meaningful, it indicates the port
>   of the sending  process,  and may be assumed  to be the port  to which a
>   reply should  be addressed  in the absence of any other information.  If
>   not used, a value of zero is inserted.
> 
> UDP packets with src port = 0 are widely used.

John,

Can you provide some examples. Or better yet, a comprehensive
list if there is such a thing.

P.S. Didn't ICANN replace IANA?

-- 
Gary Flynn
Security Engineer
James Madison University
www.jmu.edu/computing/security


More information about the unisog mailing list