nanog mailing list archives
Re: DNS issues various
From: Kevin Houle <kjh () cert org>
Date: Thu, 24 Oct 2002 16:51:08 -0400
--On Thursday, October 24, 2002 04:30:20 PM -0400 "David G. Andersen" <dga () lcs mit edu> wrote:
Until the default behavior of most systems is to block spoofed packets, it's going to remain a problem.
I assert this is not the case. A significant percentage of DDoS attacks use legitimate source IP addresses. When there are thousands of throw-away hosts in the attack network, the difficulty of traceback and elimination remains, and so does the problem. Yes, blocking spoofed packets helps. But it is not an end-game. Kevin
Current thread:
- Re: How to secure the Internet in three easy steps, (continued)
- Re: How to secure the Internet in three easy steps dgold (Oct 29)
- Re: How to secure the Internet in three easy steps Matthew S. Hallacy (Oct 27)
- Re: How to secure the Internet in three easy steps Petri Helenius (Oct 25)
- Re: How to secure the Internet in three easy steps batz (Oct 25)
- Re: How to secure the Internet in three easy steps Michael Lamoureux (Oct 25)
- Re: DNS issues various Craig Partridge (Oct 24)
- Message not available
- Re: DNS issues various Daniel Senie (Oct 25)
- Re: DNS issues various dre (Oct 24)
- Re: DNS issues various Richard A Steenbergen (Oct 24)
- Re: DNS issues various David G. Andersen (Oct 24)
- Re: DNS issues various Kevin Houle (Oct 24)
- Re: DNS issues various Rob Thomas (Oct 24)
- Re: DNS issues various Richard A Steenbergen (Oct 24)
- Re: DNS issues various Daniel Senie (Oct 25)
- Re: DNS issues various Randy Bush (Oct 25)
- Re: DNS issues various Daniel Senie (Oct 25)