Heidi wrote: >Thank you Crispin, > >If this is the case, then perhaps all ISPs should be required to filter >outbound datagrams that have source addresses corresponding to external >networks. Thanks for the info....Heidi > That idea has been floated, but as you might imagine, it is resisted by the industry :-) Typical of American commerce, regulation is not a popular idea. What seems more likely, some day, would be liability: if (say) Yahoo and Amazon could sue (say) Qwest and U.Oregon for failure to implement egress filtering (or some other effective means) and thus were hosting DDoS zombies, then there would be financial incentive to do something responsible. Crispin -- Crispin Cowan, Ph.D. Chief Scientist, WireX Communications, Inc. http://wirex.com Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html
This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:30:35 PDT