[133318] in North American Network Operators' Group
RE: Over a decade of DDOS--any progress yet?
daemon@ATHENA.MIT.EDU (Drew Weaver)
Wed Dec 8 11:54:47 2010
From: Drew Weaver <drew.weaver@thenap.com>
To: 'Jeffrey Lyon' <jeffrey.lyon@blacklotus.net>, Jack Bates
<jbates@brightok.net>
Date: Wed, 8 Dec 2010 11:53:20 -0500
In-Reply-To: <AANLkTiko_by5MEj1tVjrnYx8HrPBWwRUpvyiRCSxeJPX@mail.gmail.com>
Cc: North American Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
You can get a dedicated server for $80 with a 1Gbps connection to the Inter=
net without looking that hard.
It is pretty easy/cheap to kill a 1Gbps connection now a days.
Soon several providers will begin offering dedicated servers with a 10Gbps =
connection to a single machine.
-Drew
-----Original Message-----
From: Jeffrey Lyon [mailto:jeffrey.lyon@blacklotus.net]=20
Sent: Wednesday, December 08, 2010 11:42 AM
To: Jack Bates
Cc: North American Operators' Group
Subject: Re: Over a decade of DDOS--any progress yet?
< 1 Gbps attacks used to be standard issue but as of the past 90 days
we have been seeing 2 - 8 Gbps a lot more frequently.
Jeff
On Wed, Dec 8, 2010 at 11:38 AM, Jack Bates <jbates@brightok.net> wrote:
> On 12/8/2010 10:28 AM, Dobbins, Roland wrote:
>>
>> Application-layer attacks aside, most packet-flooding attacks these
>> days don't completely fill links, as there's no need for the attacker
>> to do so.
>>
>
> I think the difference here is scale. packet-flooding attacks often do
> fill links; if the links drop to 155mb/s or below. I've seen some gig+ DO=
S,
> but that is less common. The DOS I posted a flow capture link for wasn't
> that large, but enough to flood out the little DS3 going to the small tow=
n
> where the target DSL customers was.
>
>
> Jack
>
>
>
>
--=20
Jeffrey Lyon, Leadership Team
jeffrey.lyon@blacklotus.net | http://www.blacklotus.net
Black Lotus Communications - AS32421
First and Leading in DDoS Protection Solutions
