[63048] in North American Network Operators' Group
Re: Any way to P-T-P Distribute the RBL lists?
daemon@ATHENA.MIT.EDU (Dan Hollis)
Thu Sep 25 16:33:36 2003
Date: Thu, 25 Sep 2003 13:31:14 -0700 (PDT)
From: Dan Hollis <goemon@anime.net>
To: Jay Kline <list@slushpupie.com>
Cc: nanog@merit.edu
In-Reply-To: <20030925151213.1eea4fec.list@slushpupie.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 25 Sep 2003, Jay Kline wrote:
> How about publishing a list of servers, but use the PGP web of trust model to
> allow updating of each other? That way there is no centralized source. If a
> group of admins dont like the updates coming from a server, dont trust it any
> longer. If you make this more like a social network, you dont have to have a
> central authority.
exactly. to be immune from ddos you MUST remove any centralized source.
> The trick then will be to have as many different participants as possible,
> and to have each participant share who it thinks the other participants are
> (or explicitly are not). Then if you take out one node, the others are not
> prevented from functioning.
the problem is that automated crawlers could amass a list of nodes to
attack. i shy away from automated discovery.
-Dan
--
[-] Omae no subete no kichi wa ore no mono da. [-]
