Re: DoS

From: Crispin Cowan (crispin@private)
Date: Wed Nov 07 2001 - 12:12:53 PST

  • Next message: Heidi: "RE: Scam"

    Heidi wrote:
    
    >Thank you Crispin,
    >
    >If this is the case, then perhaps all ISPs should be required to filter
    >outbound datagrams that have source addresses corresponding to external
    >networks.  Thanks for the info....Heidi
    >
    That idea has been floated, but as you might imagine, it is resisted by 
    the industry :-)  Typical of American commerce, regulation is not a 
    popular idea.  What seems more likely, some day, would be liability: if 
    (say) Yahoo and Amazon could sue (say) Qwest and U.Oregon for failure to 
    implement egress filtering (or some other effective means) and thus were 
    hosting DDoS zombies, then there would be financial incentive to do 
    something responsible.
    
    Crispin
    
    -- 
    Crispin Cowan, Ph.D.
    Chief Scientist, WireX Communications, Inc. http://wirex.com
    Security Hardened Linux Distribution:       http://immunix.org
    Available for purchase: http://wirex.com/Products/Immunix/purchase.html
    



    This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:30:35 PDT