On Fri, 17 Jan 2003, hc wrote: > > > > > >> > > > > Good point. > > > > I suppose another basic but effective method of prevention would be > > egress filtering. An increasing minority of network providers are > > instituting it, but it doesn't seem like it will be a widespread thing > > in the near-term. > > > > Yes, but egress filtering is only effective by far. Anyone can forge the > source to an IP address that belongs to one of the /16's a provider > advertises. filter close to the end host, this limits (mostly) to the local /24 or /25 or /2(>5)... > > It will help of course, but really not The solution... Or is there one? > haha, there isn't one :( since even with no spoofing you can muster an army of 100,000 IIS servers still scanning for nimda :(
- Re: Is there a line of def... Christopher L. Morrow
- Re: Is there a line of def... alex
- Re: Is there a line of def... Michael Lamoureux
- Re: Is there a line of def... alex
- Re: Is there a line of def... Jack Bates
- Re: Is there a line of def... E.B. Dreger
- Re: Is there a line of def... Valdis . Kletnieks
- Re: Is there a line of defense against Distributed R... Christopher L. Morrow
- Re: Is there a line of defense against Distribu... Brad Laue
- Re: Is there a line of defense against Dist... hc
- Re: Is there a line of defense against ... Christopher L. Morrow
- Re: Is there a line of defense against ... Valdis . Kletnieks
- Re: Is there a line of defense against Distribu... alex
- Re: Is there a line of defense against Distributed R... David G. Andersen
- Re: Is there a line of defense against Distribu... David G. Andersen
- Re: Is there a line of defense against Distributed R... John Kristoff
- Re: Is there a line of defense against Distribu... Christopher L. Morrow
- Re: Is there a line of defense against Dist... David G. Andersen
- Re: Is there a line of defense against ... Christopher L. Morrow
- Re: Is there a line of defense against Dist... Clayton Fiske