[68271] in North American Network Operators' Group
Re: Source address validation (was Re: UUNet Offer New Protection
daemon@ATHENA.MIT.EDU (Stephen J. Wilcox)
Sun Mar 7 15:04:29 2004
Date: Sun, 7 Mar 2004 20:01:22 +0000 (GMT)
From: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
To: Paul Vixie <paul@vix.com>
Cc: nanog@merit.edu
In-Reply-To: <20040307043437.4EF6214750@sa.vix.com>
Errors-To: owner-nanog-outgoing@merit.edu
> actually, it would. universal uRPF would stop some attacks, and it would
> remove a "plan B" option for some attack-flowcharts. i would *much* rather
> play defense without facing this latent weapon available to the offense.
I'm agreeing here, okay (yet anoter) example.. smurf attacks. These seem to be
non-existent these days so shall we stop disabling 'ip directed-broadcast' on
our routers?
Steve
