[e2e] DDoS attack vs. Spoofing of Source Address
John Kristoff
jtk at northwestern.edu
Thu Jan 19 13:55:46 PST 2006
On Thu, Jan 19, 2006 at 12:23:27PM -0800, Joe Touch wrote:
> > Many DoS agents have had the ability to randomly fake the source
> > address and of course they commonly come up with a "bogon".
>
> Sure. That sounds more like a bug in their source address checking code,
> IMO.
If I was to think as an attacker, why would I spend my effort writing
perfect spoofing code when it is clearly not necessary for my attacks
to be effective. Likewise, if I'm one trying to mitigate the attacks,
why would I focus on trying to stop spoofing?
John
More information about the end2end-interest
mailing list