Re: tcp vulnerability? haven't seen anything on it here...

From: Florian Weimer
Date: Thu Apr 22 2004 - 16:16:16 EST

Next message: Michal Ludvig: "[PATCH] crypto_null autoload"
Previous message: Willy Tarreau: "Re: tcp vulnerability? haven't seen anything on it here..."
In reply to: Horst von Brand: "Re: tcp vulnerability? haven't seen anything on it here..."
Next in thread: Chris Friesen: "Re: tcp vulnerability? haven't seen anything on it here..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Horst von Brand <vonbrand@xxxxxxxxxxxx> writes:

> If everybody (or at least the bigger knots) filters spoofed traffic,
> this ceases to be a problem. And that solves a shipload of other
> problems, so...

There isn't much incentive to deploy filters so that other people
don't suffer. So it takes a long time until it's almost universally
implemented. (We catch less backscatter from DDoS attacks than a few
years ago, so the situation may actually be improving.)

--
Current mail filters: many dial-up/DSL/cable modem hosts, and the
following domains: atlas.cz, bigpond.com, postino.it, tiscali.co.uk,
tiscali.cz, tiscali.it, voila.fr.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michal Ludvig: "[PATCH] crypto_null autoload"
Previous message: Willy Tarreau: "Re: tcp vulnerability? haven't seen anything on it here..."
In reply to: Horst von Brand: "Re: tcp vulnerability? haven't seen anything on it here..."
Next in thread: Chris Friesen: "Re: tcp vulnerability? haven't seen anything on it here..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]