[53108] in North American Network Operators' Group
Re: no ip forged-source-address
daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Thu Oct 31 01:48:49 2002
Date: Thu, 31 Oct 2002 06:46:45 +0000 (GMT)
From: "Christopher L. Morrow" <chris@UU.NET>
To: <Valdis.Kletnieks@vt.edu>
Cc: "Christopher L. Morrow" <chris@UU.NET>, <nanog@nanog.org>
In-Reply-To: <200210310636.g9V6avDv004837@turing-police.cc.vt.edu>
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 31 Oct 2002 Valdis.Kletnieks@vt.edu wrote:
> On Thu, 31 Oct 2002 06:21:00 GMT, "Christopher L. Morrow" said:
>
> > I'm confused.. its still a DoS attack, eh??
>
> It's the difference between:
>
> A) Going out to your car at the end of a too-long day and finding a
> broken taillight.
>
> B) Going out to your car at the end of a too-long day and finding a
> broken taillight and a business card under the windshield wiper that
> has "Sorry - call me and I'll pay for it" written on the back.
>
I think the spoofed source filtering is more a red-herring than anything
else. Its not the fix for anything related to this problem of attacks on
the internet. Spoofed or non, I can forward 1,000,000pps at your network and
it will die (most times).
This is like trying to fix a rotten decayed tooth with trident.
