[108491] in North American Network Operators' Group
RE: Fwd: cnn.com - Homeland Security seeks cyber counterattack
daemon@ATHENA.MIT.EDU (Buhrmaster, Gary)
Mon Oct 6 16:09:56 2008
Date: Mon, 6 Oct 2008 13:09:38 -0700
In-Reply-To: <48127.1223318264@turing-police.cc.vt.edu>
From: "Buhrmaster, Gary" <gtb@slac.stanford.edu>
To: <Valdis.Kletnieks@vt.edu>, "n3td3v" <xploitable@gmail.com>
Cc: n3td3v <n3td3v@googlegroups.com>, full-disclosure@lists.grok.org.uk,
nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
=20
> Which is easier to shut down, an attack coming from a relatively small
> number of /16s that belong to the government, or one coming from the
> same number of source nodes scattered *all* over Comcast and Verizon
> and BT and a few other major providers?
>=20
> Hint 1: Consider the number of entry points into your network=20
> for the two cases, especially if you are heavily peered with one or =
more=20
> of the source ISPs. =20
The Federal Government (through its "Trusted Internet
Connection" initiative) is trying to limit the number
of entry points into the US Government networks.
(As I recall from 4000 interconnects to around 50,
where both numbers have a high percentage of politics
in the error bar.)
