[36184] in North American Network Operators' Group
Re: dsl providers that will route /24
daemon@ATHENA.MIT.EDU (Eric A. Hall)
Thu Mar 29 17:58:27 2001
Message-ID: <3AC3BD87.31D5C987@ehsco.com>
Date: Thu, 29 Mar 2001 14:56:08 -0800
From: "Eric A. Hall" <ehall@ehsco.com>
MIME-Version: 1.0
Cc: nanog@nanog.org
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
> They could do almost exactly the same amount of damage with an
> unspoofed UDP flood and it would still take a human action to stop it.
This is a false premise. I get hit with one-off attacks pretty often
(oversized pings against my NT boxes, etc.), which are impossible to trace
because of invalid source addresses.
Source filters would mean that those attacks would be identifiable period,
which they are not now.
--
Eric A. Hall http://www.ehsco.com/
Internet Core Protocols http://www.oreilly.com/catalog/coreprot/
