[47817] in North American Network Operators' Group
Re: Arbor Networks DoS defense product
daemon@ATHENA.MIT.EDU (Dan Hollis)
Wed May 15 18:33:26 2002
Date: Wed, 15 May 2002 15:29:49 -0700 (PDT)
From: Dan Hollis <goemon@anime.net>
To: Lyndon Nerenberg <lyndon@atg.aciworldwide.com>
Cc: Rob Thomas <robt@cymru.com>, NANOG <nanog@merit.edu>
In-Reply-To: <200205152209.g4FM9jtO074756@atg.aciworldwide.com>
Message-ID: <Pine.LNX.4.44.0205151528200.32573-100000@sasami.anime.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, 15 May 2002, Lyndon Nerenberg wrote:
> I usually avoid blackhole subscription lists like this. They let
> the attacker take out your legitimate peers by spoofing the source.
If they can take out your legitimate peers by spoofing end to end TCP
connections, then you have got some really enormous problems that need to
be addressed.
I don't think spoofing will be a problem for the landmines. Most attacks
(99%?) are tcp.
-Dan
--
[-] Omae no subete no kichi wa ore no mono da. [-]
