nanog mailing list archives
Re: CCO/cisco.com issues.
From: "Laurence F. Sheldon, Jr." <larrysheldon () cox net>
Date: Tue, 07 Oct 2003 09:30:52 -0500
"Stephen J. Wilcox" wrote:
You are making assumptions.. Cisco havent said if the source was spoofed or not, as a recent nanog thread indicated a lot of attacks do not use spoofed addresses any more simply because the controllers have access to enough legitimate windows boxes to not care about discovery of source.
Interesting. I read (and just now reread) Mr. dobbins posting and made the same assumptions, based on the part where he said: We've been handling a multi-vector DDoS - 40-byte spoofed SYN- ~~~~~~~ flooding towards www.cisco.com (198.133.219.25/32) as well as an HTTP-AUTH resource-exhaustion attack, and working these issues with our upstreams. I made the assupmtion that if the upstreams had an interest in cisco's survival beyond the end-of-quarter numbers they would do something useful. Strange how we leap to these shaky conclusions.
Current thread:
- Re: CCO/cisco.com issues., (continued)
- Re: CCO/cisco.com issues. Marc Binderberger (Oct 07)
- Re: CCO/cisco.com issues. Richard Cox (Oct 06)
- Re: CCO/cisco.com issues. ed (Oct 06)
- Re: CCO/cisco.com issues. Stephen J. Wilcox (Oct 06)
- Re: CCO/cisco.com issues. ed (Oct 06)
- Re: Re[2]: CCO/cisco.com issues. Valdis . Kletnieks (Oct 06)
- RE: Re[2]: CCO/cisco.com issues. Terry Baranski (Oct 06)
- Re: CCO/cisco.com issues. Suresh Ramasubramanian (Oct 06)
- Re: CCO/cisco.com issues. Stephen J. Wilcox (Oct 07)
- Re: CCO/cisco.com issues. Suresh Ramasubramanian (Oct 07)
- Re: CCO/cisco.com issues. Laurence F. Sheldon, Jr. (Oct 07)
- Re: CCO/cisco.com issues. Matt (Oct 06)
- Re: CCO/cisco.com issues. Peter E. Fry (Oct 06)
- Re: CCO/cisco.com issues. Ariel Biener (Oct 06)
- Re: CCO/cisco.com issues. Allan Liska (Oct 06)