[conspire] Fighting DDoS extortion
Tony Godshall
togo at of.net
Wed May 4 15:55:01 PDT 2005
According to Rick Moen,
> Quoting Don Marti (dmarti at zgp.org):
>
> > No, there's more to the story than that. The DDoS
> > packets are typically spoofed.
> >
> > http://grc.com/dos/winxp.htm
>
> I'd forgotten that.
>
> Unless I'm missing something, it indicates gross incompetence (or
> collusion) on the part of whoever's setting up the ISP routers: They're
> supposed to drop packets arriving on the inside interfaces bearing
> foreign source IPs, aren't they? Mine always do.
Well, they may be incompetence, but mistakes like this would
eat bandwidth, and cost $$$. So I would think they would
configure this correctly. Market darwinism and all that.
More information about the conspire
mailing list