[39308] in North American Network Operators' Group
Re: GRC rides again...
daemon@ATHENA.MIT.EDU (David Howe)
Mon Jul 2 12:19:11 2001
Message-ID: <001901c10312$64e35800$c71121c2@sharpuk.co.uk>
From: "David Howe" <DaveHowe@gmx.co.uk>
To: "Email List: nanog" <nanog@nanog.org>
Date: Mon, 2 Jul 2001 17:16:39 +0100
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
> The GRC page talks about his dos attack, and he also rants about the
> "dangers" of the IP stack in XP, but his dos attack didn't come from
sources
> sending spoofed packets, so source address filtering wouldn't have helped
in
> this case. GRC complaining about the spoofed packet problem should be a
> separate rant on his website (who knows...it probably is!).
I suspect that there were two attacks - because a few days after he posted a
smug "I blocked all the compromised machines at the ISP and didn't even
notice later attacks" on his site, he posted a handsup "I surrender, you
win" - and started ranting about the dangers of XP. The reaction is about
what I would expect if his smug "I beat the haxors" page annoyed someone
enough that he *did* launch a spoofed attack, and one with a sufficient
variety of source IPs that there was no blocking it.
