[133178] in North American Network Operators' Group
Over a decade of DDOS--any progress yet?
daemon@ATHENA.MIT.EDU (Sean Donelan)
Mon Dec 6 02:50:32 2010
Date: Mon, 6 Dec 2010 02:50:18 -0500 (EST)
From: Sean Donelan <sean@donelan.com>
To: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
February 2000 weren't the first DDOS attacks, but the attacks on multiple
well-known sites did raise DDOS' visibility.
What progress has been made during the last decade at stopping DDOS
attacks?
SMURF attacks creating a DDOS from directed broadcast replies seems to
have been mostly mitigated by changing defaults in major router OS's.
TCP SYN attacks creating a DDOS from leaving many half-open connections
seems to have been mostly mitigated with SYN Cookies or similar OS
changes.
Other than buying lots of bandwidth and scrubber boxes, have any other
DDOS attack vectors been stopped or rendered useless during the last
decade?
Spoofing?
Bots?
Protocol quirks?
