Bugtraq mailing list archives

Re: DDOS Attack Mitigation

From: avalon () COOMBS ANU EDU AU (Darren Reed)
Date: Tue, 15 Feb 2000 09:49:43 +1100


In some mail from Alan Brown, sie said:


On Sun, 13 Feb 2000, Darren Reed wrote:

You know if anyone was of a mind to find someone at fault over this,
I'd start pointing the finger at ISP's who haven't been doing this
due to "performance reasons".


To be fair, if you do this on most terminal servers (eg, Cisco 5300, Max
4000), they will collapse under the load.


i.e. poorly designed.

 They've had the ability to do it for
years and in doing so would seriously reduce the number and possibility
of "spoofing" attacks.


See above. Having enough CPU available to handle spoof filtering from
dialups adds a lot to costs and most ISPs simply can't afford to pay
more in order to be able to provide that benefit. :-(


Someone should either put a bomb under Cisco's arse and get them to
pull their finger out and deliver a cost-effective box which does
what's actually required for a `secure internet' or gather up some
venture capital and build a new box which provides the requisite
security.  It would seem that the market is potentially quite large:
replacing every Cisco dialup router in existance with a "secure one"
with at least the same performance.  How many 1000s of units do Cisco
claim to have sold ?

Darren

Current thread:

Packet Tracing (linux klog patch), (continued)
- - - Packet Tracing (linux klog patch) Dragos Ruiu (Feb 12)
    - Re: Packet Tracing (linux klog patch) Andrzej Bialecki (Feb 15)
    - Re: Packet Tracing (linux klog patch) Dragos Ruiu (Feb 17)
    - Re: Packet Tracing (linux klog patch) Andrzej Bialecki (Feb 17)
    - crash windows boxes on your local network (twinge.c) sinkhole () NILL NET (Feb 10)
    - Re: crash windows boxes on your local network (twinge.c) Elias Levy (Feb 14)
    - DDOS Attack Mitigation Elias Levy (Feb 11)
    - TESO - Nameserver traffic amplify and NS route discovery Sebastian (Feb 12)
    - Re: DDOS Attack Mitigation Darren Reed (Feb 13)
    - Re: DDOS Attack Mitigation Alan Brown (Feb 14)
    - Re: DDOS Attack Mitigation Darren Reed (Feb 14)
    - NetBSD Security Advisory 1999-012 Daniel Carosone (Feb 15)
    - Re: DDOS Attack Mitigation Chris Cappuccio (Feb 15)
    - Re: DDOS Attack Mitigation Carson Gaspar (Feb 15)
    - Re: DDOS Attack Mitigation John Edwards (Feb 15)
    - Re: DDOS Attack Mitigation Ryan Russell (Feb 16)
    - Administrivia Elias Levy (Feb 16)
    - Re: DDOS Attack Mitigation John Payne (Feb 14)
    - Re: DDOS Attack Mitigation Julien Nadeau (Feb 14)
    - Re: DDOS Attack Mitigation Bennett Todd (Feb 15)
    - rp_filter? (was Re: DDOS Attack Mitigation) Julien Nadeau (Feb 18)

(Thread continues...)