nanog mailing list archives
Re: Is there a line of defense against Distributed Reflective attacks?
From: "E.B. Dreger" <eddy+public+spam () noc everquick net>
Date: Sun, 19 Jan 2003 04:27:17 +0000 (GMT)
SD> Date: Sat, 18 Jan 2003 21:22:14 -0500 (EST) SD> From: Sean Donelan SD> 1) Make end-user systems less vulnerable to being compromised With consumers, "cheap and easy" usually wins. More often than not, I hear "I don't care if someone breaks into my computer or my email, because I don't have anything private". One of our customers knowingly had the ILOVEYOU virus for I can't remember how many months. (Gotta love the rejected mail logs on _that_ one.) With essentially one desktop OS, there's not a huge amount of pressure to make a better product. How many known bugs were in the fraction of Windows source code involved in the antitrust case? My memory fades, but it seems code quality in the most popular OS is not the highest priority. SD> 2) Track and stop DDOS quickly when it does happen Is it TCP/80 DDoS, or did you just get slashdotted? (I suppose that goes along with #3, below.) SD> 3) Find and convict the true attacker IOW, find the "magic packet" someone used to bring 10,000 zombies to life. Question: Just how often do people need end-to-end IP traffic? I'm not suggesting blocking it; that would be bad. But look at AOL's proxied Web and email service... most people are none the wiser. Perhaps end-to-end traffic should be blocked at the edge until <???>. And, oh yeah, "shut off the malicious and clueless" has worked just great for stopping spam, hasn't it? As Chris Morrow and others so often and aptly mention -- technical problem or social malady? Eddy -- Brotsman & Dreger, Inc. - EverQuick Internet Division Bandwidth, consulting, e-commerce, hosting, and network building Phone: +1 (785) 865-5885 Lawrence and [inter]national Phone: +1 (316) 794-8922 Wichita ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Date: Mon, 21 May 2001 11:23:58 +0000 (GMT) From: A Trap <blacklist () brics com> To: blacklist () brics com Subject: Please ignore this portion of my mail signature. These last few lines are a trap for address-harvesting spambots. Do NOT send mail to <blacklist () brics com>, or you are likely to be blocked.
Current thread:
- Re: OT: Re: FW: Re: Is there a line of defense against Distributed Reflective attacks?, (continued)
- Re: OT: Re: FW: Re: Is there a line of defense against Distributed Reflective attacks? Marshall Eubanks (Jan 22)
- Re: OT: Re: FW: Re: Is there a line of defense against Distributed Reflective attacks? Petri Helenius (Jan 23)
- Re: FW: Re: Is there a line of defense against Distributed Reflective attacks? Vijay Gill (Jan 22)
- Re: Streaming Video Bandwidth Requirements, WAS: FW: Re: Is there a line of defense against Distributed Reflective attacks? Numetra (Jan 24)
- Re: FW: Re: Is there a line of defense against Distributed Reflective attacks? Damian Gerow (Jan 22)
- Re: FW: Re: Is there a line of defense against Distributed Reflective attacks? Damian Gerow (Jan 22)
- ISPs not liable for hostile code sent between users Sean Donelan (Jan 23)
- Re: ISPs not liable for hostile code sent between users Jack Bates (Jan 23)
- Re: Is there a line of defense against Distributed Reflective attacks? Sean Donelan (Jan 18)
- Re: Is there a line of defense against Distributed Reflective attacks? E.B. Dreger (Jan 18)
- Re: Is there a line of defense against Distributed Reflective attacks? Sean Donelan (Jan 19)
- RE: Is there a line of defense against Distributed Reflective attacks? Deepak Jain (Jan 19)
- Re: Is there a line of defense against Distributed Reflective attacks? David G. Andersen (Jan 19)
- RE: Is there a line of defense against Distributed Reflective attacks? Deepak Jain (Jan 19)
- Re: Is there a line of defense against Distributed Reflective attacks? David Howe (Jan 20)
- OT: Is there a line of defense against Distributed Reflective attacks? Al Rowland (Jan 20)