Re: Internet SYN Flooding, spoofing attacks

Sun, 13 Feb 2000 21:43:13 -0800 


I think that making egress filtering a BCP, applying community
pressure, bringing law suites, etc., will be about as effective
at eliminating forged source address packets on the Internet as
similar measures have been in eliminating open SMTP relays...

They help, but not much.

Donald

From:  Paul Ferguson <[EMAIL PROTECTED]>
Message-Id:  <[EMAIL PROTECTED]>
Date:  Fri, 11 Feb 2000 16:35:18 -0500
To:  [EMAIL PROTECTED]
Cc:  [EMAIL PROTECTED]
In-Reply-To:  <[EMAIL PROTECTED]>
References:  <Your message of "Fri, 11 Feb 2000 14:40:15 EST." <009E5826.5FC1D447.198
@process.com>
             <[EMAIL PROTECTED]>

>At 03:33 PM 02/11/2000 -0500, [EMAIL PROTECTED] wrote:
>
>>Given that RFC2267 is over 2 years old now, what *do* you suggest the network
>>community at large do to motivate the sites that still haven't implemented it?
>
>Do you think that if RFC2267 was advanced as a BCP that
>it would carry more weight, and therefore more ISP's would
>implement RFC2267-style filtering? Coupled with the latest
>denial of service attacks?
>
>- paul
>

Reply via email to