Whither Cometh BCP38?
Jay Ashworth
jra at baylink.com
Mon Jun 11 16:09:18 UTC 2012
----- Original Message -----
> From: "Roland Dobbins" <rdobbins at arbor.net>
> On Jun 11, 2012, at 10:13 PM, Jay Ashworth wrote:
> > Or are spoofed-source-address attacks not, as Vix suggests,
> > significant and trending upwards?
>
> They're enjoying a renaissance because of attackers leveraging
> spoofing in order to enable DNS, SNMP, and ntp
> reflection/amplification DDoS attacks.
Ok, so your comment confirms that there's still a problem, and Mikael's,
that the tools to stop it from actually being a problem can *reasonably*
be expected to be in place in a reasonably large number of places where
they're needed.
So, are the knobs actually on? (I'm guessing "clearly, not")
Why?
Cheers,
-- jra
--
Jay R. Ashworth Baylink jra at baylink.com
Designer The Things I Think RFC 2100
Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII
St Petersburg FL USA http://photo.imageinc.us +1 727 647 1274
More information about the NANOG
mailing list