Vulnerability Development mailing list archives
Egress checking (was Re: Networking theories)
From: stpeters () NETHEAVEN COM (Dick St.Peters)
Date: Fri, 5 May 2000 23:29:12 -0400
ISPs *should* be doing egress checking. We've been doing it for more than 4 years. We not only block foreign-source packets, we log every one blocked and track down the perpetrators. (The overwhelming majority of such packets are from leaking VPNs. Most "perpetrators" are just victims of lousy software, but we've uncovered a few not-so-benign cases.) -- Dick St.Peters, stpeters () NetHeaven com Matthew King writes:
Not many ISP or providers actually do that kind of egress checking.. I do not know of many here in Oz that do. Cya Matthew -----Original Message----- From: Bluefish [mailto:11a () GMX NET] Sent: Saturday, 6 May 2000 10:07 AM To: VULN-DEV () SECURITYFOCUS COM Subject: Re: Networking theoriesvictim.org(spoofed) ---> ICMP(source-quench) ---> router.victim.orgActually, there was a email from... cert (I think) ... intended for larger companies and ISPs with guidelines for combating DDoS. Among those guidelines there was recommendations of checking source IP. So it's a known problem which responsible ISPs will stop (but probably most doesn't) ..:::::::::::::::::::::::::::::::::::::::::::::::::.. http://www.11a.nu || http://bluefish.11a.nu eleventh alliance development & security team
Current thread:
- Re: Networking theories Matthew King (May 05)
- Re: Networking theories Pavel Kankovsky (May 07)
- <Possible follow-ups>
- Re: Networking theories Matthew King (May 05)
- Egress checking (was Re: Networking theories) Dick St.Peters (May 05)
- The Million Dollar Solution Matthew Harmon (May 05)
- Re: The Million Dollar Solution Ron DuFresne (May 05)
- Re: The Million Dollar Solution Rob Perry (May 06)
- Re: The Million Dollar Solution Jeremy Speer (May 06)
- Very Technical info about The VIRUS repair...but well laid out Robert Riebs (May 06)
- Administrivia #8704 (I think we should just be friends) Blue Boar (May 06)
- Re: The Million Dollar Solution (NOT?) Nohican (May 06)
- Re: Networking theories Matthew King (May 06)
- Re: Networking theories Bluefish (May 07)
- Re: Networking theories Aussie (May 07)
(Thread continues...)