Re: s00per firewall

["Brian Loe" <knobdy () gmail com>]

On 7/14/06, Dude VanWinkle <dudevanwinkle () gmail com> wrote:
> Is that the best method for combating DoS and botnets though? Creating
> a DB of hosts and logging their patterns of activity?
>
> Is their an algorithm of "normal" net activity you can apply to
> different IP blocks based on who resells them? Do consumer blocks act
> with a general measure of a certain type of activity?
>
> It seems like a promising method IMO

Sounds familiar to me. I guess you'd have to start logging all
activity on those networks and then mine that data for usage trends
and whatnot.

Once again US government/military needs pave the way for technological advances.

Brian <who is incredibly smug - don't you think?>
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.