Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: DDOS Attack Mitigation
From: alan () MANAWATU GEN NZ (Alan Brown)
Date: Tue, 15 Feb 2000 07:13:20 +1300

On Sun, 13 Feb 2000, Darren Reed wrote:


You know if anyone was of a mind to find someone at fault over this,
I'd start pointing the finger at ISP's who haven't been doing this
due to "performance reasons".


To be fair, if you do this on most terminal servers (eg, Cisco 5300, Max
4000), they will collapse under the load.


 They've had the ability to do it for
years and in doing so would seriously reduce the number and possibility
of "spoofing" attacks.


See above. Having enough CPU available to handle spoof filtering from
dialups adds a lot to costs and most ISPs simply can't afford to pay
more in order to be able to provide that benefit. :-(

AB

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]