Re: NANOG meeting subject of attack? Hmmmm....

["Craig A. Huegen" <chuegen () quadrunner com>]

On Tue, Feb 08, 2000 at 11:47:59PM -0500, Charles Sprickman wrote:

==>It's my understanding that these recent attacks are DDoS attacks, which
==>really don't need to involve any address spoofing.  The MO would look
==>similar to a smurf (many different source addresses bombarding you), but
==>here the negligent (call the lawyers?) party with the hacked Solaris boxes
==>running out-of-the-box configs would not be helped by said RFC, right?

Yes and no.  The ability to track the perpetrators back to the source
would be enough to scare some of these kids away.  For those who weren't
scared away, the resultant (and easy) traceback and subsequent arrest,
conviction, and jail time would provide even more of an example.

As you say, though, they could still carry out attacks with non-spoofed
IP's.

/cah