|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: Is there a line of defense against Distributed Reflective attacks?
> Doesn't ECN depend on 'well behaved' traffic? In other words, wouldn't it > require the hosts sending traffic to slow down? So... even if the hosts > slowed down, 10,000 hosts still is a high traffic rate at the end point. > :( Yes, for ECN to work the sending host must honor the slowdown request/ It does happen transparently for most types of sockets, however the attacker can and will disable ECN with a single syscall. Alex
|