[4112] in linux-net channel archive
Re: SYN floods
daemon@ATHENA.MIT.EDU (Lefty)
Tue Aug 20 13:55:26 1996
Date: Tue, 20 Aug 1996 16:23:51 GMT
From: lefty@sliderule.geek.org.uk (Lefty)
To: alan@cymru.net, lefty@sliderule.geek.org.uk
Cc: linux-net@vger.rutgers.edu, nelson@crynwr.com
> Its up to ISP's to filter addresses coming FROM their network which are
> not their own addresses. I would dearly like the big providers to write
> that into their acceptable use policy as a requirement. These problems
> have to be stopped _at_source_, and the random clueless provider is a
> hazard to all otherwise. We don't allow people to run telephone companies
> without showing some degree of sense so they wont upset the existing
> infrastructure, so why do we allow ISP's to get away with it to the bad
> suffering of other ISPs ?
Because ANYONE with a couple thousand can set up an ISP.. There is no
licenses required, there are no real forms to file (I am not counting
domain registrtion), etc.. Because of that, there will always be those
that dont know what they are doing that can create problems for others, and
as soon as major providers start blocking IP's from the smaller guys, a lot
of people will complain becuase that IP may belong there, and people like
sprint refuse to update their routing tables in a timely mannor..
Also IPv6 will make this type of attack much more difficult, and a lot
easier to block (since routing info is p[art of the addr, or something)
