[38931] in North American Network Operators' Group
Re: Few questions to the american ISPs [Re: DDOS anecdotes]
daemon@ATHENA.MIT.EDU (Christopher A. Woodfield)
Sat Jun 23 20:59:24 2001
Date: Sat, 23 Jun 2001 20:56:58 -0400
To: Alexei Roudnev <alex@relcom.EU.net>
Cc: nanog@merit.edu, "Sean M. Doran" <smd@clock.org>
Message-ID: <20010623205658.B26177@semihuman.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <00d101c0fc16$6066be00$9eb431c6@oemcomputer>
From: "Christopher A. Woodfield" <rekoil@semihuman.com>
Errors-To: owner-nanog-outgoing@merit.edu
At a conference in late 1999, UUNet announced that they had anti-spoof
filters in place on their dialup ports. Not that that amount to much in
contrast to teh amount of spoofed DDOS traffic from cable providers, mind
you...IIRC, it's the cable providers that need to put up the anti-spoofing
filters the most.
-C
> - any big ISP have skilled security person available. When I worked in Russia, it
> took 10 - 15 minutes to contact your ISP and install such filters; for EUnet, it
> took 20 minutes; for TELIA, it was the same. For any amertican ISP, it took a week
> (UUnet was an exception)...
> - all cable providers will have src address filters, so preventing src address
> frauding.
>
--
---------------------------
Christopher A. Woodfield rekoil@semihuman.com
PGP Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xB887618B
