[180124] in North American Network Operators' Group
Re: [SECURITY] Application layer attacks/DDoS attacks
daemon@ATHENA.MIT.EDU (Steve via NANOG)
Mon May 25 09:31:27 2015
X-Original-To: nanog@nanog.org
In-Reply-To: <mailman.1.1432555201.21370.nanog@nanog.org>
Date: Mon, 25 May 2015 09:31:18 -0400
To: "nanog@nanog.org" <nanog@nanog.org>
From: Steve via NANOG <nanog@nanog.org>
Reply-To: Steve <angst1974@yahoo.com>
Errors-To: nanog-bounces@nanog.org
Application layer DDoS attacks , in most (all?) cases require a valid TCP/IP=
connection, therefore are not spoofed and BCP38 is irrelevant=20
Sent from Steve's iPhone=20
> On May 25, 2015, at 8:00 AM, nanog-request@nanog.org wrote:
>=20
> Send NANOG mailing list submissions to
> nanog@nanog.org
>=20
> To subscribe or unsubscribe via the World Wide Web, visit
> http://mailman.nanog.org/mailman/listinfo/nanog
> or, via email, send a message with subject or body 'help' to
> nanog-request@nanog.org
>=20
> You can reach the person managing the list at
> nanog-owner@nanog.org
>=20
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of NANOG digest..."
>=20
>=20
> Today's Topics:
>=20
> 1. Re: [SECURITY] Application layer attacks/DDoS attacks
> (Christopher Morrow)
> 2. Re: [SECURITY] Application layer attacks/DDoS attacks
> (Ramy Hashish)
> 3. Re: [SECURITY] Application layer attacks/DDoS attacks (Randy Bush)
>=20
>=20
> ----------------------------------------------------------------------
>=20
> Message: 1
> Date: Sun, 24 May 2015 23:01:50 -0400
> From: Christopher Morrow <morrowc.lists@gmail.com>
> To: jim deleskie <deleskie@gmail.com>
> Cc: Ramy Hashish <ramy.ihashish@gmail.com>, NANOG list
> <nanog@nanog.org>
> Subject: Re: [SECURITY] Application layer attacks/DDoS attacks
> Message-ID:
> <CAL9jLaYf7v-NG_1qGEHtHhASOD6Vea5VJCSJcWhS29GPcRuzPg@mail.gmail.com>
> Content-Type: text/plain; charset=3DUTF-8
>=20
> On Sat, May 23, 2015 at 9:12 PM, jim deleskie <deleskie@gmail.com> wrote:
>>> However, the trusted network initiative might be a good approach to star=
t
>>> influencing operators to apply anti-spoofing mechanisms.
>=20
> explain how you think the 'trusted network initiative' matters in the slig=
htest?
>=20
> -chris
>=20
>=20
> ------------------------------
>=20
> Message: 2
> Date: Mon, 25 May 2015 06:48:41 +0200
> From: Ramy Hashish <ramy.ihashish@gmail.com>
> To: morrowc.lists@gmail.com, nanog@nanog.org
> Subject: Re: [SECURITY] Application layer attacks/DDoS attacks
> Message-ID:
> <CAOLsBOt_SOwHLZVRgb31nMMX5isiS8rkXojUpP9NyNVU05Dw9w@mail.gmail.com>
> Content-Type: text/plain; charset=3DUTF-8
>=20
> The idea of restricting access to a certain content during an attack on th=
e
> "trusted networks" only will make all interested ISPs be more "trusted"
>=20
> Ramy
>=20
> On Mon, May 25, 2015 at 5:01 AM, Christopher Morrow <morrowc.lists@gmail.c=
om
>> wrote:
>=20
>> On Sat, May 23, 2015 at 9:12 PM, jim deleskie <deleskie@gmail.com> wrote:=
>>>> However, the trusted network initiative might be a good approach to
>> start
>>>> influencing operators to apply anti-spoofing mechanisms.
>>=20
>> explain how you think the 'trusted network initiative' matters in the
>> slightest?
>>=20
>> -chris
>=20
>=20
> ------------------------------
>=20
> Message: 3
> Date: Mon, 25 May 2015 15:18:43 +0900
> From: Randy Bush <randy@psg.com>
> To: Ramy Hashish <ramy.ihashish@gmail.com>
> Cc: North American Network Operators' Group <nanog@nanog.org>
> Subject: Re: [SECURITY] Application layer attacks/DDoS attacks
> Message-ID: <m2r3q5b2nw.wl%randy@psg.com>
> Content-Type: text/plain; charset=3DUS-ASCII
>=20
>> The idea of restricting access to a certain content during an attack
>> on the "trusted networks" only will make all interested ISPs be more
>> "trusted"
>=20
> don't the lawyers already have enough money?
>=20
>=20
> End of NANOG Digest, Vol 88, Issue 25
> *************************************
