DNS issues various

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Thu Oct 24 18:34:37 UTC 2002


On Thu, 24 Oct 2002 18:01:44 -0000, "Kelly J. Cooper" <kcooper at genuity.net>  said:

> So, seven years of hardening hosts against SYN attacks.  Five years of
> trying to get people to turn off the forwarding of broadcast packets.
> Three years of botnets generating meg upon meg of crap-bandwidth.
> 
> Where are the suuuuuper-geniuses?

You know, most bars have bouncers at the door that check IDs.  Sure, they're
not perfect, but the bartender can usually be pretty sure the guy ordering a
beer is over 21. The average bar isn't run by a soooper-genius.  But it's still
considered fashionable to let packets roam your network without an ID check at
the door.

soooper-genius solutions aren't going to help any when there's a lot of
address space that's managed by Homer Simpson....


-- 
				Valdis Kletnieks
				Computer Systems Senior Engineer
				Virginia Tech

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20021024/c3db623b/attachment.sig>


More information about the NANOG mailing list