[163563] in North American Network Operators' Group
Re: chargen is the new DDoS tool?
daemon@ATHENA.MIT.EDU (Majdi S. Abbas)
Tue Jun 11 19:57:44 2013
Date: Tue, 11 Jun 2013 19:57:17 -0400
From: "Majdi S. Abbas" <msa@latt.net>
To: Ricky Beam <jfbeam@gmail.com>
In-Reply-To: <op.wyjgk0natfhldh@rbeam.xactional.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Jun 11, 2013 at 07:52:02PM -0400, Ricky Beam wrote:
> All of the above plus very poorly managed network / network
> security. (sadly a Given(tm) for anything ending dot-e-d-u.) a) why
> are *printers* given public IPs? and b) why are internet hosts
> allowed to talk to them? I actually *very* surprised your printers
> are still functional if the whole internet can reach them.
You've never worked for one, have you?
Guess what, they have /16s, they use them, and they like
the ability to print from one side of campus to the other. Are you
suggesting gigantic NATs with 120,000 students and faculty behind them?
I have a hard time blaming a school for this. I have an easy
time wondering why printer manufacturers are including chargen support
in firmware.
--msa
