[69428] in North American Network Operators' Group
Re: Packet anonymity is the problem?
daemon@ATHENA.MIT.EDU (Yann Berthier)
Sun Apr 11 05:52:23 2004
Date: Sun, 11 Apr 2004 11:51:45 +0200
From: Yann Berthier <yb@sainte-barbe.org>
To: nanog@merit.edu
In-Reply-To: <C7AA377F-8B92-11D8-8702-000A95CD987A@muada.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 11 Apr 2004, Iljitsch van Beijnum wrote:
> Ok, then explain to me how removing bugs from the code I run prevents
> me from being the victim of denial of service attacks.
It's the other way around in fact: if others were to run (more)
secure code, there would be far less boxen used as zombies to launch
ddos attacks against your infrastructure, to propagate worms, and to
be used as spam relays.
While it can sound a bit theorical (to hope that the "others" will
run secure code), as the vast majority of users run OSs from one
particular (major) vendor, an amelioration of said family of OSs
would certainly benefit to all. Just think about all the recent
network havocs caused by worms propagating on one OS platform ...
- yann