nanog mailing list archives
Re: SMURF amplifier block list
From: Mark Milhollan <mlm () ftel net>
Date: Tue, 14 Apr 1998 21:00:31 -0700
Stephen Sprunk writes:
If you have a suggestion for "removing the attack possibility in its entirety," please tell us. So far, nobody's come up with one.
SMURF'ing depends on spoofed source addresses, so the appropriate filter is customer (and if your can afford it peer) ingress, not network egress. Anyone willing to install a *.255 filter should instead eliminate directed-broadcast response, and validate packets they will accept.
Current thread:
- Re: SMURF amplifier block list, (continued)
- Re: SMURF amplifier block list Stephen Sprunk (Apr 14)
- Re: SMURF amplifier block list - READ THIS Karl Denninger (Apr 14)
- Message not available
- Re: SMURF amplifier block list - READ THIS Jay R. Ashworth (Apr 14)
- Re: SMURF amplifier block list - READ THIS Mark Milhollan (Apr 14)
- Re: SMURF amplifier block list - READ THIS Michael Dillon (Apr 14)
- Re: SMURF amplifier block list - READ THIS Dax Kelson (Apr 15)
- Re: SMURF amplifier block list - READ THIS Karl Denninger (Apr 15)
- Re: SMURF amplifier block list - READ THIS Pete Ashdown (Apr 15)
- Re: SMURF amplifier block list - READ THIS Karl Denninger (Apr 15)
- Re: SMURF amplifier block list - READ THIS Pete Ashdown (Apr 15)
- Re: SMURF amplifier block list Mark Milhollan (Apr 14)
- Re: SMURF amplifier block list Brandon Ross (Apr 14)
- Re: SMURF amplifier block list Andrew Smith (Apr 14)
- Re: SMURF amplifier block list Pete Ashdown (Apr 15)
- Re: SMURF amplifier block list Joe Shaw (Apr 15)
- Re: SMURF amplifier block list Brandon Ross (Apr 15)
- Message not available
- Re: SMURF amplifier block list Jay R. Ashworth (Apr 14)
- Re: SMURF amplifier block list Charley Kline (Apr 14)
- Message not available
- Re: SMURF amplifier block list Jay R. Ashworth (Apr 14)
- Re: SMURF amplifier block list John Hawkinson (Apr 14)
- Re: SMURF amplifier block list Randy Bush (Apr 14)