nanog mailing list archives

Re: Why won't providers source-filter attacks? Simple.

From: "Livingood, Jason" <Jason_Livingood () cable comcast com>
Date: Fri, 7 Feb 2014 19:26:19 +0000

On 2/5/14, 7:11 PM, "Mark Andrews" <marka () isc org> wrote:

Well when industries don't self regulate governments step in.  This
industry is demonstratably incapble of regulating itself in this
area despite lots of evidence of the problems being caused for lots
of years.


Which industry is that? App providers that have not implemented? Hosting
providers that have not? Transit providers that have not? Access network
ISPs that have not? Large enterprises and education networks that have
not? ;-)

I still prefer a list of specific networks that need to pay attention to
improving anti-spoofing since otherwise I think most of us are in violent
agreement on the need.

This has been DOCUMENTED BEST CURRENT PRACTICE for 13.5
years.  Everybody else is having to deal the problems caused by
these bad actors.

Hell, I suspect you could send the directors to gaol or make them
pay a heavy fine today by properly examining the existing laws.  A new
law would just make the problem more explicit.


In the U.S. one of the FCC Communications Security, Reliability, and
Interoperability Council (CSRIC) working groups is focused on this issue.
I do not know what is happening in other jurisdictions.

Jason

Current thread:

Re: Why won't providers source-filter attacks? Simple., (continued)
- - - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Mark Andrews (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Leo Bicknell (Feb 06)
    - POLL: BCP38 Name And Shame Jay Ashworth (Feb 05)
    - Message not available
    - Re: Why won't providers source-filter attacks? Simple. Mark Andrews (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Livingood, Jason (Feb 07)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Jay Ashworth (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] goemon (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Tony Tauber (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Randy Bush (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Livingood, Jason (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Octavio Alvarez (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Livingood, Jason (Feb 04)
    - RE: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Frank Bulk (Feb 04)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Livingood, Jason (Feb 05)
    - Re: BCP38 [Was: Re: TWC (AS11351) blocking all NTP?] Christopher Morrow (Feb 05)

(Thread continues...)