nanog mailing list archives

Re: Is malicious asymmetrical routing still a thing?

From: Aaron1 <aaron1 () gvtc com>
Date: Thu, 9 Mar 2023 14:27:34 -0600

Sounds like something uRPF would prevent 

Does anyone do uRPF ?  lol 

Aaron

On Mar 9, 2023, at 2:03 PM, John Levine <johnl () iecc com> wrote:

Back in the olden days, a spammer would set up a server with a fast
broadband connection and a dialup connection, and send out lots of
spam over the broadband connection using the dialup's IP address.  Since
mail traffic is quite asymmetric, this got them most of the broadband
speed, and when the dialup provider cancelled their service, they could
just dial into someone else.  Or maybe work through that giant pile of
AOL CD-ROMs we all had.  The broadband provider often wouldn't notice
since it wasn't their IP and they didn't get the complaints.

Is this still a thing? Broadband providers fixed this by some
combination of filtering port 25 traffic both ways, and BCP38 so you
can only send packets with your own address. Do providers do both of
these? More of one than the other? TIA.

R's,
John

Current thread:

Is malicious asymmetrical routing still a thing? John Levine (Mar 09)
- Re: Is malicious asymmetrical routing still a thing? Aaron1 (Mar 09)
  - Re: Is malicious asymmetrical routing still a thing? William Herrin (Mar 09)
    - Re: Is malicious asymmetrical routing still a thing? Jon Lewis (Mar 09)
    - Re: Is malicious asymmetrical routing still a thing? Grant Taylor via NANOG (Mar 09)
  - Re: Is malicious asymmetrical routing still a thing? Mark Tinka (Mar 12)
- Re: Is malicious asymmetrical routing still a thing? Christopher Munz-Michielin (Mar 09)
  - Re: Is malicious asymmetrical routing still a thing? Christopher Morrow (Mar 09)
  - Re: Is malicious asymmetrical routing still a thing? Grant Taylor via NANOG (Mar 09)
    - Re: Is malicious asymmetrical routing still a thing? William Herrin (Mar 09)
    - Re: Is malicious asymmetrical routing still a thing? William Herrin (Mar 09)