Provider-based DDoS Protection Services
Florian Weimer
fw at deneb.enyo.de
Fri Jul 29 07:27:57 UTC 2005
* Suresh Ramasubramanian:
> On 29/07/05, Florian Weimer <fw at deneb.enyo.de> wrote:
>>
>> Anyway, you should examine *why* you (or your customers) are attacked,
>> and address that. Everything else is likely cost-effective. Of
>> course, this might mean you have to do without some revenue if you
>> have customers that are DoS magnets for some reason.
>>
>
> Not allowing your users to run eggdrop or other irc bots on the shells
> you give them, and generally not hosting irc stuff would definitely
> help there.
Definitely. You should also help your customer to detect successful
break-ins. Compromised machines are often used in very questionable
contexts and quickly become targets of DoS attacks as well (not your
average owned home computer, of course, it's more about multi-user
UNIX machines).
More information about the NANOG
mailing list