[133317] in North American Network Operators' Group
Re: Over a decade of DDOS--any progress yet?
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Wed Dec 8 11:52:23 2010
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: North American Operators' Group <nanog@nanog.org>
Date: Wed, 8 Dec 2010 16:49:28 +0000
In-Reply-To: <4CFFB483.8010304@brightok.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Dec 8, 2010, at 11:38 PM, Jack Bates wrote:
> I think the difference here is scale. packet-flooding attacks often do
> fill links; if the links drop to 155mb/s or below.
I'm not saying that link-flooding attacks don't happen; they certainly do, =
and on very big links, sometimes. =20
But in the scheme of things, they don't happen nearly as often as they used=
to, as the attackers simply don't need to fill the links in order to accom=
plish their goals, in most cases.
It's also important to note that a lot of DDoS isn't directly perpetrated b=
y those who wish the DDoS performed, but rather is hired out to botmasters =
who're paid to execute the attacks. Even if the person who is the motivati=
ng force behind the attack is paying in stolen credit cards or whatever, he=
doesn't want to pay for more than is needed to accomplish his goal.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Sell your computer and buy a guitar.
