|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: RBL-type BGP service for known rogue networks?
On Thu, 6 Jul 2000 [email protected] wrote: > The biggest problem is that it's a lot easier to verify that a given site > is a spamhaus. Remember that source IP addresses (which is all that your > border router sees) are forgeable - making for a nice DOS attack. Forge > packets from a competitor's site, get them labelled as a skriptz kiddie site, > and BGP-blackholed. There are ways of confirming, and they wouldnt be blackholed unless it was confirmed. I know the issues with forged source IPs and the blackhole list would take that into account. -Dan
|