ICANN Targets DDoS Attacks

David Conrad david.conrad at nominum.com
Mon Nov 4 17:08:44 UTC 2002


Just to be clear:

(a) RSSAC is not an IETF working group.  It is an ICANN thing and not open
to the public (last I heard)

(b) "active" in this context must be using a definition of that term that
I'm unfamiliar with.

Rgds,
-drc

On 11/4/02 3:47 PM, "bmanning at vacation.karoshi.com"
<bmanning at vacation.karoshi.com> wrote:

> 
> 
> yes.  this is a topic of active discussion within
> the RSSAC.
> 
> 
>> 
>> 
>> is any active working group persuing this matter seriously?
>> 
>> -rgds
>> Alok
>> ----- Original Message -----
>> From: alok <alok.dube at apara.com>
>> To: <cjclark at alum.mit.edu>; <Valdis.Kletnieks at vt.edu>
>> Sent: Saturday, November 02, 2002 4:26 AM
>> Subject: Re: ICANN Targets DDoS Attacks
>> 
>> 
>> 
>> 
>>> The first, dropping broadcasts destined to your customers, is possibly
>>> doable, but not trivial.
>> 
>> ------> IGP learnt networks .. a small tweaky bit which learns broadcast
>> addresses via the networks in the IGP wud help (again summarization wud make
>> it bad)
>> 
>>> The second, catching all broadcasts coming
>>> in, out, or just passing through, is pretty much impossible.
>> 
>> -----> a very small percentage cud be blocked if u were willing to link this
>> to BGP learnt networks..at least those are "complete networks", not
>> subnetted....
>> 
>> ofcourse its a very small portion, mebbe u cud ask guys to send more
>> specific BGP routes from now....
>> 
>> -A
>> 
>> 
>> 
>> 
>> 
> 




More information about the NANOG mailing list