nanog mailing list archives
Re: Yahoo! Lessons Learned
From: robert () UU NET
Date: Wed, 09 Feb 2000 20:27:27 -0500
i am rather amused at folk who fear dialup systems being used as ddos slaves.
I'm more worried about a master being connected there. Remember, with at least one of the tools you can trigger the "slaves" via forged ICMP reply messages. It doesn't take a fat pipe to do that and it makes finding the perp that much harder, especially since dial connections are generally more anonymous. Yes, we have tested "source validation" in our live dial network. Yes, there is a performance impact. "Can do" or "Can't do" depends on how many dial customers you are trying to pile into one box, and what equipment you are using. Also, ingress filtering one-hop-up isn't necessarily so easy. Some of us will dynamically route prefixes other than /32 to certain dial customers. This complicates things.
Current thread:
- Re: Yahoo! Lessons Learned, (continued)
- Re: Yahoo! Lessons Learned Daniel Senie (Feb 09)
- Re: Yahoo! Lessons Learned Dan Hollis (Feb 09)
- Re: Yahoo! Lessons Learned Jared Mauch (Feb 09)
- Re: Yahoo! Lessons Learned Joe Shaw (Feb 09)
- Re: Yahoo! Lessons Learned Daniel Senie (Feb 09)
- Re: Yahoo! Lessons Learned Charles Sprickman (Feb 09)
- Re: Yahoo! Lessons Learned Randy Bush (Feb 09)
- Re: Yahoo! Lessons Learned Andrew Brown (Feb 09)
- Re: Yahoo! Lessons Learned Randy Bush (Feb 09)
- RE: Yahoo! Lessons Learned Charley Kline (Feb 10)
- Re: Yahoo! Lessons Learned robert (Feb 09)
- Re: Yahoo! Lessons Learned Randy Bush (Feb 09)
- Re: Yahoo! Lessons Learned Joe Shaw (Feb 09)
- Fair Queuing combats DDoS? [was Re: Yahoo! Lessons Learned ] Alex Bligh (Feb 10)
- FBI / NIPC released a DDoSD detection tool? Rodney Caston (Feb 10)
- RE: FBI / NIPC released a DDoSD detection tool? Roeland M.J. Meyer (Feb 10)
- RE: FBI / NIPC released a DDoSD detection tool? Ryan Tucker (Feb 10)
- RE: FBI / NIPC released a DDoSD detection tool? NANOG Mailing List (Feb 10)
- RE: FBI / NIPC released a DDoSD detection tool? Patrick Evans (Feb 10)
- C Source for RE: FBI / NIPC released a DDoSD detection tool? Larry Snyder (Feb 10)