North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
RE: dsl providers that will route /24
- From: David Schwartz
- Date: Thu Mar 29 21:54:58 2001
> > Not so. You could still never be sure whether the attack was spoofed
> > or not. That the address the attacks appear to come from employ source
> > filters doesn't help you.
> This is your excuse not to filter? That there is one other network which
> doesn't, so the network is already insecure?
> Would the network be more secure if you also filtered or less secure if
> you didn't?
It's less secure if peoplee can spoof packets without detection. Filtering
is one means of solving this problem. There are others. Filtering is not a
perfect solution, there are others that are even better than filtering, they
just take more work.