nanog mailing list archives

Re: Over a decade of DDOS--any progress yet?

From: Jeffrey Lyon <jeffrey.lyon () blacklotus net>
Date: Wed, 8 Dec 2010 11:41:31 -0500

< 1 Gbps attacks used to be standard issue but as of the past 90 days
we have been seeing 2 - 8 Gbps a lot more frequently.

Jeff


On Wed, Dec 8, 2010 at 11:38 AM, Jack Bates <jbates () brightok net> wrote:

On 12/8/2010 10:28 AM, Dobbins, Roland wrote:


Application-layer attacks aside, most packet-flooding attacks these
days don't completely fill links, as there's no need for the attacker
to do so.


I think the difference here is scale. packet-flooding attacks often do
fill links; if the links drop to 155mb/s or below. I've seen some gig+ DOS,
but that is less common. The DOS I posted a flow capture link for wasn't
that large, but enough to flood out the little DS3 going to the small town
where the target DSL customers was.


Jack




-- 
Jeffrey Lyon, Leadership Team
jeffrey.lyon () blacklotus net | http://www.blacklotus.net
Black Lotus Communications - AS32421
First and Leading in DDoS Protection Solutions

Current thread:

RE: Over a decade of DDOS--any progress yet?, (continued)
- - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? jim deleskie (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Joel Jaeggli (Dec 14)
  - Re: Over a decade of DDOS--any progress yet? Thomas Mangin (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Thomas Mangin (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Jack Bates (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Jeffrey Lyon (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Jack Bates (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Randy McAnally (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 10)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Jay Coley (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
    - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 10)
    - Re: Over a decade of DDOS--any progress yet? Joel Jaeggli (Dec 10)
    - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 10)

(Thread continues...)