[63047] in North American Network Operators' Group
Re: Any way to P-T-P Distribute the RBL lists?
daemon@ATHENA.MIT.EDU (Dan Hollis)
Thu Sep 25 16:29:48 2003
Date: Thu, 25 Sep 2003 13:28:59 -0700 (PDT)
From: Dan Hollis <goemon@anime.net>
To: "Eric A. Hall" <ehall@ehsco.com>
Cc: nanog@merit.edu
In-Reply-To: <3F7346EB.9050009@ehsco.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 25 Sep 2003, Eric A. Hall wrote:
> on 9/25/2003 2:44 PM Aaron Dewell wrote:
> > So why couldn't you follow this plan without the VPN and anycast?
> Multiple anycast channels would make distributed attacks ineffective,
> since each source would be attacking its closest target.
script kiddies can easy amass zombie nets of several 10k's, widely
distributed enough to kill an entire anycast system.
also, the individual anycast targets likely wouldnt be very happy when
they do get ddosed.
this talk about architectures of static targets really has got to stop.
start thinking outside the box, mmkay?
-Dan
--
[-] Omae no subete no kichi wa ore no mono da. [-]
