[32126] in North American Network Operators' Group
Re: Defeating DoS Attacks Through Accountability
daemon@ATHENA.MIT.EDU (bmanning@vacation.karoshi.com)
Sat Nov 11 17:31:11 2000
From: bmanning@vacation.karoshi.com
Message-Id: <200011112226.WAA21355@vacation.karoshi.com>
To: bgreene@cisco.com (Barry Raveendran Greene)
Date: Sat, 11 Nov 2000 22:26:41 +0000 (UCT)
Cc: mark-list@mentovai.com (Mark Mentovai),
mrp@connect.com.au (Mark Prior),
simon.lyall@ihug.co.nz (Simon Lyall), nanog@merit.edu
In-Reply-To: <017501c04c28$e31aa170$4f01a8c0@bgreenent2.cisco.com> from "Barry Raveendran Greene" at Nov 11, 2000 01:46:45 PM
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
> > I'll put it this way: filtering should be done against blocks that a
> > customer can announce, not against blocks that a customer is actively
> > announcing. If you're filtering purely against current advertisements,
> > you're bound to break something sooner or later.
>
> Good theory. But what one public source do all the ISP agree to validate the
> authority to announce?
>
> Barry
Seems that the closest thing available today is the in-addr tree.
--bill
