[16106] in North American Network Operators' Group

home help back first fref pref prev next nref lref last post

Re: SMURF amplifier block list

daemon@ATHENA.MIT.EDU (Michael Dillon)
Sun Apr 12 12:03:42 1998

Date: Sun, 12 Apr 1998 08:55:48 -0700 (PDT)
From: Michael Dillon <michael@memra.com>
To: nanog@merit.edu
In-Reply-To: <Pine.SUN.3.91.980412155837.18082K-100000@virgin.relcom.eu.net>

On Sun, 12 Apr 1998, Alex P. Rudnev wrote:

> May be, someone will maintain such lists? First, it allow to fix smurf 
> source by 'log' option in the CISCO list; second, it'll prefere some 
> attacks.

If Karl will supply us the IP address of a non-critical machine in his
network then we only need one list maintained. Anyone can then add new
networks to Karl's list simply by smurfing his non-critical machine and it
will still meet his criteria of a verified atack.

--
Michael Dillon                   -               Internet & ISP Consulting
http://www.memra.com             -               E-mail: michael@memra.com



home help back first fref pref prev next nref lref last post