nanog mailing list archives
Re: New Internet-draft on DDOS defense...
From: "Steven M. Bellovin" <smb () research att com>
Date: Fri, 12 May 2000 08:01:37 -0400
In message <Pine.LNX.3.96.1000512075212.812B-100000 () ogre atl netrail net>, Bran don Ross writes:
On Thu, 11 May 2000, Owen DeLong wrote:Right answer, wrong reason. The originating host will be easy to identify because the MAC address of the originating machine of the ECHO-REQUEST packets will be contained in the packets.I have to strongly disagree, MAC addresses don't make it across router boundaries, source IP addresses do.
Besides, MAC addresses are quite often changeable.
--Steve Bellovin
Current thread:
- Re: New Internet-draft on DDOS defense..., (continued)
- Re: New Internet-draft on DDOS defense... Daniel Senie (May 11)
- Re: New Internet-draft on DDOS defense... Paul Ferguson (May 11)
- Re: New Internet-draft on DDOS defense... Daniel Senie (May 11)
- Re: New Internet-draft on DDOS defense... Brett Frankenberger (May 11)
- Re: New Internet-draft on DDOS defense... Paul Ferguson (May 12)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 11)
- Re: New Internet-draft on DDOS defense... Brandon Ross (May 11)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 11)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 12)
- Re: New Internet-draft on DDOS defense... Jerry Scharf (May 12)
- Re: New Internet-draft on DDOS defense... Brandon Ross (May 12)
- Re: New Internet-draft on DDOS defense... Steven M. Bellovin (May 12)
- Re: New Internet-draft on DDOS defense... Owen DeLong (May 12)
- Re: New Internet-draft on DDOS defense... Vipul Shah (May 16)
- Re: New Internet-draft on DDOS defense... Richard Steenbergen (May 19)