nanog mailing list archives
Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement)
From: Karl Denninger <karl () mcs net>
Date: Sat, 27 Dec 1997 21:16:50 -0600
On Sat, Dec 27, 1997 at 04:08:05PM -0600, Phil Howard wrote:
Hello Karl & All, Where or at what price are these tools available. Tia, JimL PS: In a further responce Karl was heard to say :The bottom line is that MONTHS after these were made available your NOC crewI never heard nor was made aware that these tools were available, even though I am an MCI Customer . :-(Same here. Are they free or do they cost money? People want the tools.
Free. Virtually all providers who are default-free have them or they damn well ought to. If you CAN, you should be refusing forged source addresses from your dedicated customers. I fully understand that not everyone CAN do this due to the limitations of their architectures - in particular, high-aggregation routers for customer connects have this ugly problem with running out of CPU. However, if a forged-source data stream IS traced to one of your customers, expect a harsh response from the general network community. This attack is well-enough known by now that I consider anyone unable to immediately and permanently deal with such an incident to be somewhere beneath contempt. Frankly, for the majority of providers even simple filtering (ie: is it from one of our networks) coupled with INTELLIGENT address assignment policies make this a non-issue. Unfortunately, the HUGE majority of major network providers don't even seem to think that its a big deal to allow directed broadcasts to cross their network architecture - which is "step 0" in defusing this problem. -- -- Karl Denninger (karl () MCS Net)| MCSNet - Serving Chicagoland and Wisconsin http://www.mcs.net/ | T1's from $600 monthly to FULL DS-3 Service | NEW! K56Flex support on ALL modems Voice: [+1 312 803-MCS1 x219]| EXCLUSIVE NEW FEATURE ON ALL PERSONAL ACCOUNTS Fax: [+1 312 803-4929] | *SPAMBLOCK* Technology now included at no cost
Current thread:
- Re: Bogus announcement of 205.164.62.0/24 by AGIS - CLEARED, (continued)
- Re: Bogus announcement of 205.164.62.0/24 by AGIS - CLEARED Darin Wayrynen (Dec 27)
- Re: Bogus announcement of 205.164.62.0/24 by AGIS - CLEARED Karl Denninger (Dec 27)
- smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Network Operations Center (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Phil Howard (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Darin Wayrynen (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Pete Ashdown (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Darin Wayrynen (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Dorian R. Kim (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Karl Denninger (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Phil Howard (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Karl Denninger (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Ken Leland (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Adrian Chadd (Dec 27)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Ken Leland (Dec 27)
- Re: smurf, the MCI-developed tracing tools Dax Kelson (Dec 28)
- Re: smurf, the MCI-developed tracing tools Karl Denninger (Dec 29)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Karl Denninger (Dec 28)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Adrian Chadd (Dec 28)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Bradley Reynolds (Dec 28)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Adrian Chadd (Dec 28)
- Re: smurf, the MCI-developed tracing tools (was Re: Bogus announcement) Karl Denninger (Dec 28)