IW: Tools Stunt DoS Attacks
Lars Gaarden
larsg at trustix.com
Wed Feb 7 08:16:13 PST 2001
Andrew Alston wrote:
> Basically, people who claim to be able to stop DDOS/trace DDOS/etc etc I
> believe are playing on the public, making money out of a situation that
> unfortunatly has no end in site, due to the fuckups made in the IP
> protocol by the department of defense when they released the RFC.
Spoofed source-addresses can be (and often are) blocked at the
access ISP. RFC 2267, Ingress filtering.
DDOS trojans on ISDN/xDSL/Cable home user boxes will have to use
their real (or at least same subnet) source addresses on datagrams,
or run the risk of having the traffic dropped silently at the first
router.
There is also work being done on tagging and tracing datagrams.
http://www.cs.washington.edu/homes/savage/traceback.html
This won't stop DDOS attacks, but it will make it a lot harder to
mount an attack without exposing many of the DDOS trojans
participating.
--
"I'm rather jubilant now. What Judge Kaplan did was blow away every one
of these brittle and fragile rebuttals. He threw out fair use; he threw
out reverse engineering; he threw out linking."
- Jack Valenti, president of the Motion Picture Association of America.
More information about the cypherpunks-legacy
mailing list