nanog mailing list archives

Re: DOS attack from PANAMSAT

From: Clayton Fiske <clay () bloomcounty org>
Date: Sun, 7 Jul 2002 13:27:52 -0700


On Sun, Jul 07, 2002 at 04:16:12PM -0400, Valdis.Kletnieks () vt edu wrote:

On Sun, 07 Jul 2002 12:45:13 PDT, Clayton Fiske <clay () bloomcounty org>  said:

Don't forget 3) the machine compromised isn't capable of spoofing.
In Win95/98/ME/NT, there is no raw socket functionality. I don't


The fact that there is no raw socket *API* doesn't mean it's that much
more difficult to convince the device driver to send a packet that isn't
strictly kosher.


Sure, but the idea that the kids doing the harvesting a) know how to
do such a thing and b) care if the compromised machine is traced is
a stretch in my mind. As a previous poster said, if a DDoS comes
from enough different sources, it doesn't matter if they're really
spoofed or not.

-c

Current thread:

DOS attack from PANAMSAT Roy (Jul 06)
- Re: DOS attack from PANAMSAT Christopher L. Morrow (Jul 06)
- <Possible follow-ups>
- Re: DOS attack from PANAMSAT Rizzo Frank (Jul 06)
  - Re: DOS attack from PANAMSAT Rob Thomas (Jul 06)
    - Re: DOS attack from PANAMSAT Richard A Steenbergen (Jul 07)
    - Re: DOS attack from PANAMSAT Clayton Fiske (Jul 07)
    - Re: DOS attack from PANAMSAT Valdis . Kletnieks (Jul 07)
    - Re: DOS attack from PANAMSAT Clayton Fiske (Jul 07)
    - Re: DOS attack from PANAMSAT Valdis . Kletnieks (Jul 07)
    - Re: DOS attack from PANAMSAT Stephen Griffin (Jul 07)
- Re: DOS attack from PANAMSAT Rizzo Frank (Jul 07)