Re: NANOG meeting subject of attack? Hmmmm....

• From: Craig A. Huegen
• Date: Wed Feb 09 01:23:51 2000

On Tue, Feb 08, 2000 at 11:47:59PM -0500, Charles Sprickman wrote:

==>It's my understanding that these recent attacks are DDoS attacks, which
==>really don't need to involve any address spoofing.  The MO would look
==>similar to a smurf (many different source addresses bombarding you), but
==>here the negligent (call the lawyers?) party with the hacked Solaris boxes
==>running out-of-the-box configs would not be helped by said RFC, right?

Yes and no.  The ability to track the perpetrators back to the source
would be enough to scare some of these kids away.  For those who weren't
scared away, the resultant (and easy) traceback and subsequent arrest,
conviction, and jail time would provide even more of an example.

As you say, though, they could still carry out attacks with non-spoofed
IP's.

/cah

• Follow-Ups:
  • Re: NANOG meeting subject of attack? Hmmmm.... Paul Ferguson
  • Re: NANOG meeting subject of attack? Hmmmm.... Forrest W. Christian

• References:
  • Re: NANOG meeting subject of attack? Hmmmm.... Christian Nielsen
  • Re: NANOG meeting subject of attack? Hmmmm.... Charles Sprickman

• Prev by Date: Re: Yahoo offline because of attack (was: Yahoo network outage)
• Next by Date: Congestion or regression testing DDoS
• Date Index
• Thread Index
• Author Index
• Historical