[24532] in North American Network Operators' Group
RE: Proposal for mitigating DoS attacks
daemon@ATHENA.MIT.EDU (jlewis@lewis.org)
Sun Jul 11 11:48:42 1999
Date: Sun, 11 Jul 1999 11:45:02 -0400 (EDT)
From: jlewis@lewis.org
To: Dan Rabb <danr@dbn.net>
Cc: "'nanog@merit.edu'" <nanog@merit.edu>
In-Reply-To: <AC3D459AB764D2119E3100104B29264C06D978@stl1mail1.stl1.dbn.net>
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 11 Jul 1999, Dan Rabb wrote:
> I agree that if this could be properly executed it would "mitigate" the
> effect to some parties, but at the same time, aren't you simply giving the
> attaker what he wants? You are essentially finishing what he started by
> completing the Denial of Service.
By finishing rather quickly what the attacker started, you save the rest
of the network on the receiving end of the attack. i.e. say some dialup
user or colocated server on your network is being smurfed. Would you
rather the attack go on for an hour or two or three, cripling your entire
network, or sacrifice the target so that the rest of your network is
unaffected?
----don't waste your cpu, crack rc5...www.distributed.net team enzo---
Jon Lewis *jlewis@lewis.org*| Spammers will be winnuked or
System Administrator | nestea'd...whatever it takes
Atlantic Net | to get the job done.
_________http://www.lewis.org/~jlewis/pgp for PGP public key__________
