nanog mailing list archives
RE: no ip forged-source-address
From: Randy Bush <randy () psg com>
Date: Thu, 31 Oct 2002 05:22:57 -0800
analogy games are fun, but it boils down to this... If I know the real source of an attack, I can stop it within minutes.
the real source of the attack is the skript kitty who zombied the 10,000 hosts which are sourcing packets at you. the intermediate sources are the 10,000 zombies, and trying to deal with them at the source just does not scale. though i sympathize with the frustration the attack victim feels, i find the net.vigilanteeism amusing at best and misdirecting of people's efforts at worst. the places where the counter-attack is scalable are at the real perp and at the attacked site. finding the former is still a matter of research. the known scalable counter to the latter is still <http://nanog.org/mtg-0102/bellovin.html>. randy
Current thread:
- RE: no ip forged-source-address, (continued)
- RE: no ip forged-source-address Daniel Senie (Oct 30)
- Re: no ip forged-source-address Michael Lamoureux (Oct 30)
- Re: no ip forged-source-address Daniel Senie (Oct 30)
- Re: no ip forged-source-address Christopher L. Morrow (Oct 30)
- RE: no ip forged-source-address H. Michael Smith, Jr. (Oct 30)
- RE: no ip forged-source-address Christopher L. Morrow (Oct 30)
- Re: no ip forged-source-address Valdis . Kletnieks (Oct 30)
- Re: no ip forged-source-address Christopher L. Morrow (Oct 30)
- RE: no ip forged-source-address Charles D Hammonds (Oct 30)
- RE: no ip forged-source-address Christopher L. Morrow (Oct 30)
- RE: no ip forged-source-address Randy Bush (Oct 31)
- Re: no ip forged-source-address David Howe (Oct 31)
- RE: no ip forged-source-address Christopher L. Morrow (Oct 30)
- Re: no ip forged-source-address Sean Donelan (Oct 30)
- Re: no ip forged-source-address Hank Nussbacher (Oct 30)