nanog mailing list archives
Re: DDOS prevention offensive.
From: Rob Thomas <robt () cymru com>
Date: Thu, 12 Jul 2001 12:03:43 -0500 (CDT)
] Discuss the effect that wide spread filtering against spoofed ] addresses would have on the current number of DDOS attacks. I performed a statistical analysis of a collection of log files from one oft-targeted site. The data therein revealed that 68% of all the naughty packets contained obviously bogon source addresses (e.g. 127/8). I wouldn't extrapolate this analysis to fit all sites. I see more than enough DoS attacks were the source is not spoofed. I do think such filtering would go a long way towards mitigating DDoS attacks. -- Rob Thomas http://www.cymru.com/~robt cmn_err(CE_PANIC, "Out of coffee...");
Current thread:
- DDOS prevention offensive. Joseph T. Klein (Jul 12)
- Re: DDOS prevention offensive. Rob Thomas (Jul 12)
- Re: DDOS prevention offensive. Bill Larson (Jul 12)
- Re: DDOS prevention offensive. Jason Slagle (Jul 12)
- Re: DDOS prevention offensive. Christopher L. Morrow (Jul 12)
- Re: DDOS prevention offensive. Bill Larson (Jul 12)
- Re: DDOS prevention offensive. Bill Larson (Jul 12)
- <Possible follow-ups>
- RE: DDOS prevention offensive. Roeland Meyer (Jul 12)
- Re: DDOS prevention offensive. John McNeal (Jul 12)
- Re: DDOS prevention offensive. Rob Thomas (Jul 12)