|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |
Date: Thu, 31 Jan 2002 02:09:04 +0000 (GMT) From: Avleen Vig <lists-nanog@silverwraith.com> To: "Joseph T. Klein" <jtk@titania.net> Cc: "nanog@merit.edu" <nanog@merit.edu> In-Reply-To: <20020131001228.A11793@monet.titania.net> Message-ID: <20020131020128.P60725-100000@apple.silverwraith.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Errors-To: owner-nanog-outgoing@merit.edu On Thu, 31 Jan 2002, Joseph T. Klein wrote: > I saw what appears to be a distributed attack against a single IP > address that reached nearly 500Mbs. I was thinking that this is > high. Are people seeing any random attacks of this magnitude? Please define random :) If you mean the source is random, then yes this attack is of a high magnitude and I've seen one other this bad. The addresses could be real, or spoofed - depending on the circumstance and exact nature of the attack it'll vary. If you mean the target appears to be random, then you're probably just very very unlucky :( Attacks of this size are normally aimed at large IRC servers or large / popular websites. -- Avleen Vig Network Security Officer Smurf Amplifier Finding Executive: http://www.ircnetops.org/smurf
|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |