Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread James Davis
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 13/02/2014 18:04, Robin Williams wrote: > It'd also be good to discuss merging data from these projects into > an upstream 'open-generalbadstuff-project'. shadowserver are putting some source of open dns resolvers into their reports and I'm sure t

Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread Giles Davis
Keith Mitchell wrote: > But it's not just about NTP and DNS, pretty much any UDP-based service > that can do amplification is in play, e.g SNMP, Chargen and I've even > seen "QOTD" (UDP 19). > > > > Universal BCP38 source address validation is needed more badly then ever :-( > It really is. Gla

Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread Nick Hilliard
On 14/02/2014 11:54, Giles Davis wrote: > Keith Mitchell wrote: >> Universal BCP38 source address validation is needed more badly then ever :-( >> > It really is. It really is, but bear in mind that a single 1GE connection with no urpf can be used to create ~250-300G of backscatter traffic. Th

Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread Giles Davis
Nick Hilliard wrote: > It really is, but bear in mind that a single 1GE connection with no urpf > can be used to create ~250-300G of backscatter traffic. > > This means that there's only a requirement to have a single unscrupulous or > incompetent ISP with GE in the world to allow a devastating DoS

Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread Keith Mitchell
On 02/14/2014 06:54 AM, Giles Davis wrote: > Keith Mitchell wrote: >> But it's not just about NTP and DNS, pretty much any UDP-based service >> that can do amplification is in play, e.g SNMP, Chargen and I've even >> seen "QOTD" (UDP 17). >> Universal BCP38 source address validation is needed more

Re: [uknof] DNS/NTP , a solution !

2014-02-14 Thread Keith Mitchell
On 02/14/2014 09:02 AM, Giles Davis wrote: > Nick Hilliard wrote: >> It really is, but bear in mind that a single 1GE connection with >> no urpf can be used to create ~250-300G of backscatter traffic. >> >> This means that there's only a requirement to have a single >> unscrupulous or incompetent

Re: [uknof] LINX84

2014-02-14 Thread Clive D.W. Feather
Nic Lewis said: > I have fond memories of an early LINX meeting etiquette that required > any participant who allowed their mobile to ring audibly during the > meeting to buy all the attendees a beer each. "Rule 1". -- Clive D.W. Feather | If you lie to the compiler, Email: cl...@

Re: [uknof] LINX84

2014-02-14 Thread Matt Ryan
I have a vague recollection of a very good night of curry and beer at what I think was LINX-22 (RIPE-31 was at the same time in Edinburgh). Not sure how many people turned up for that meeting but it can't have been too many to get everyone in the one curry house. Matt.