[47606] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Effective ways to deal with DDoS attacks?

daemon@ATHENA.MIT.EDU (vern@ee.lbl.gov)
Tue May 7 16:06:10 2002

Message-Id: <200205071959.g47JxhO04199@yak.icir.org>
From: vern@ee.lbl.gov
To: Pete Kruckenberg <pete@kruckenberg.com>
Cc: nanog@merit.edu
Date: Tue, 07 May 2002 12:59:43 -0700
Errors-To: owner-nanog-outgoing@merit.edu


> > We most frequently are the zombie/reflector participants
> > in an attack that originates outside our network, to a
> > target outside our network. As many as 8,000 hosts on
> > our network are reflecting SYN floods in the current
> > attacks.
> 
> I finally found a paper on this type of attack.  

You might also try:

	"An Analysis of Using Reflectors for Distributed Denial-of-Service
	Attacks," V. Paxson, Computer Communication Review 31(3), July 2001.

	http://www.icir.org/vern/papers/reflectors.CCR.01/index.html
	http://www.icir.org/vern/papers/reflectors.CCR.01.ps.gz
	http://www.icir.org/vern/papers/reflectors.CCR.01.pdf

- Vern


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[47606] in North American Network Operators' Group

Re: Effective ways to deal with DDoS attacks?

daemon@ATHENA.MIT.EDU (vern@ee.lbl.gov)Tue May 7 16:06:10 2002

daemon@ATHENA.MIT.EDU (vern@ee.lbl.gov)
Tue May 7 16:06:10 2002