nanog mailing list archives

Re: WANTED: ISPs with DDoS defense solutions

From: "Petri Helenius" <pete () he iki fi>
Date: Thu, 31 Jul 2003 16:23:50 +0300



I would say that because backdoored hosts are easily available in large
quantities, spoofing does not make sense and usually alarms various systems
more quickly than packets from legitimate addresses.

Pete

----- Original Message ----- 
From: <variable () ednet co uk>
To: "Rob Thomas" <robt () cymru com>
Cc: "NANOG" <nanog () merit edu>
Sent: Thursday, July 31, 2003 4:17 PM
Subject: Re: WANTED: ISPs with DDoS defense solutions


On Wed, 30 Jul 2003, Rob Thomas wrote:

I've tracked 1787 DDoS attacks since 01 JAN 2003.  Of that number,
only 32 used spoofed sources.  I rarely see spoofed attacks now.


Do you have any ideas as to why that is?  Is it due to more providers 
doing source filtering?  It wouldn't make sense for attackers to become 
less sophisticated unless they became more difficult to catch for other 
reasons (e.g. botnets getting bigger).

Rich

Current thread:

Re: WANTED: ISPs with DDoS defense solutions, (continued)
- - - Re: WANTED: ISPs with DDoS defense solutions Christopher L. Morrow (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Mike Tancsa (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Rob Thomas (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Christopher L. Morrow (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions variable () ednet co uk (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Rob Thomas (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Paul Vixie (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Henry Linneweh (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Randy Bush (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions variable (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Petri Helenius (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Stephen J. Wilcox (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Rob Thomas (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Petri Helenius (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Paul Vixie (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Petri Helenius (Jul 30)
    - Re: WANTED: ISPs with DDoS defense solutions Vadim Antonov (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Petri Helenius (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Stephen J. Wilcox (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Paul Vixie (Jul 31)
    - Re: WANTED: ISPs with DDoS defense solutions Paul Vixie (Jul 31)

(Thread continues...)