[54332] in North American Network Operators' Group
Re: White House to Propose System for Wide Monitoring of Internet
daemon@ATHENA.MIT.EDU (Haesu)
Sun Dec 22 19:46:31 2002
Date: Sun, 22 Dec 2002 19:45:10 -0500 (EST)
From: Haesu <haesu@towardex.com>
To: Sean Donelan <sean@donelan.com>
Cc: <nanog@merit.edu>
In-Reply-To: <Pine.GSO.4.44.0212221848270.4940-100000@clifden.donelan.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 22 Dec 2002, Sean Donelan wrote:
>
> On Fri, 20 Dec 2002, batz wrote:
> > Lets say you have a an IDS load balancer sitting on a GigE span
> > port with a few sensors watching everything go by. If an alert is
> > triggered, a script is executed which goes out to the router closest
> > to the origin of the session and initiates the overlaid tunnel.
>
> On any major backbone the IDS function becomes
>
> GlobalIDSFunction() {
> While (1) {
> printf("Attack Detected!");
> }
> }
An overlaid tunnel initiates each time THIS MANY attack is detected?
Wow... I'd imagine...:
System restarted by error - a Software forced crash, PC 0x602E3780
:-)
-hc
>
> Do you really want an automatic wiretap installed on your line
> every time an attack is detected? Have you recently connected a
> system to the Internet that hasn't been attacked?
>
>
