[133274] in North American Network Operators' Group
Re: Over a decade of DDOS--any progress yet?
daemon@ATHENA.MIT.EDU (Patrick W. Gilmore)
Tue Dec 7 23:32:26 2010
From: "Patrick W. Gilmore" <patrick@ianai.net>
In-Reply-To: <alpine.GSO.2.00.1012072316130.25014@clifden.donelan.com>
Date: Tue, 7 Dec 2010 23:32:16 -0500
To: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Dec 7, 2010, at 11:26 PM, Sean Donelan wrote:
> On Mon, 6 Dec 2010, Patrick W. Gilmore wrote:
>>> But as you and others have pointed out, not a lot of defense against
>>> DDoS these days besides horsepower and anycast. :-)
>>=20
>> Not just anycast. I said distributed architecture. There are more =
ways to distribute than anycast.
>=20
> The content-side can be duplicated, replicated, distributed. On the
> eyeball-side its not as easy to replicate things. DDOS against user
> networks doesn't generate as much publicity, outside of the gammer =
world, but is also a problem.
>=20
> Other than trying to hide your real address, what can be done to =
prevent
> DDOS in the first place.
Don't piss people off on IRC? :)
--=20
TTFN,
patrick
