nanog mailing list archives

Re: Effective ways to deal with DDoS attacks?

From: Pete Kruckenberg <pete () kruckenberg com>
Date: Mon, 6 May 2002 17:15:25 -0600 (MDT)


On Wed, 1 May 2002, Pete Kruckenberg wrote:

We experience a lot of types of attacks
("education/research network"  = "easy hacker target").
With DDoS incidents, it seems we are more often an
unknowing/unwilling participant than the target, partly
due to owning big chunks of IP address space.

We most frequently are the zombie/reflector participants
in an attack that originates outside our network, to a
target outside our network. As many as 8,000 hosts on
our network are reflecting SYN floods in the current
attacks.


I finally found a paper on this type of attack.  
http://grc.com/files/drdos.pdf and
http://grc.com/dos/grcdos.htm describe the attack and a few
possible defenses, though they are about as ineffective as
most other DDoS defenses.

Pete.

Current thread:

Re: Effective ways to deal with DDoS attacks?, (continued)
- - - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 01)
    - Re: Effective ways to deal with DDoS attacks? Avleen Vig (May 02)
  - Re: Effective ways to deal with DDoS attacks? Hank Nussbacher (May 02)
    - Re: Effective ways to deal with DDoS attacks? Alexei Roudnev (May 02)
    - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 02)
    - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 02)
- Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 01)
  - Re: Effective ways to deal with DDoS attacks? Pete Kruckenberg (May 01)
    - Re: Effective ways to deal with DDoS attacks? Sean Donelan (May 01)
    - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 01)
    - Re: Effective ways to deal with DDoS attacks? Pete Kruckenberg (May 06)
    - Re: Effective ways to deal with DDoS attacks? Ralph Doncaster (May 06)
    - Re: Effective ways to deal with DDoS attacks? Richard A Steenbergen (May 06)
    - Re: Effective ways to deal with DDoS attacks? Chris Adams (May 06)
- Re: Effective ways to deal with DDoS attacks? measl (May 01)
  - Re: Effective ways to deal with DDoS attacks? Wojtek Zlobicki (May 01)
    - Re: Effective ways to deal with DDoS attacks? dies (May 01)
    - Re: Effective ways to deal with DDoS attacks? Wojtek Zlobicki (May 01)
    - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 01)
    - Re: Effective ways to deal with DDoS attacks? Basil Kruglov (May 01)
    - Re: Effective ways to deal with DDoS attacks? Christopher L. Morrow (May 01)

(Thread continues...)