DOS attack from PANAMSAT

Clayton Fiske clay at bloomcounty.org
Sun Jul 7 20:27:52 UTC 2002


On Sun, Jul 07, 2002 at 04:16:12PM -0400, Valdis.Kletnieks at vt.edu wrote:
> On Sun, 07 Jul 2002 12:45:13 PDT, Clayton Fiske <clay at bloomcounty.org>  said:
> 
> > Don't forget 3) the machine compromised isn't capable of spoofing.
> > In Win95/98/ME/NT, there is no raw socket functionality. I don't
> 
> The fact that there is no raw socket *API* doesn't mean it's that much
> more difficult to convince the device driver to send a packet that isn't
> strictly kosher.

Sure, but the idea that the kids doing the harvesting a) know how to
do such a thing and b) care if the compromised machine is traced is
a stretch in my mind. As a previous poster said, if a DDoS comes
from enough different sources, it doesn't matter if they're really
spoofed or not.

-c




More information about the NANOG mailing list