Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Counter DoS

  • From: william(at)
  • Date: Thu Mar 11 09:26:57 2004

On Thu, 11 Mar 2004, Petri Helenius wrote:
> Gregory Taylor wrote:
> > Oh yes, lets not forget the fact that if enough sites have this 
> > 'firewall' and one of them gets attacked by other sites using this 
> > firewall it'll create a nuclear fission sized chain reaction of 
> > looping Denial of Service Attacks that would probably bring most major 
> > backbone providers to their knees.
> >
> Fortunately people with less clue usually have less bandwidth. Obviously 
> there are exceptions. I would expect to see localized tragedies if 
> something like this would get deployed but predicting death of the 
> internet is clueless.

Don't be so sure that people with no clue don't have bandwidth, large 
companies with enourmouse resources sometimes end up with really clueless 
people at the top and similarly clueless network techs. 

But reality is it does not matter. Even five years ago, DoS attacks were 
already usually distributed coming mostly from comprimised servers. Now 
thanks to Microsoft's constantly buggy software and large deployment of 
broadband, its so easy for script-kiddies and alike to get hold of computers
to be used for such purposes (but at least our unix servers don't get 
hacked as much...).

And I really hate this kind of script-kiddie attitude that if you stike me, 
I'll strike you back even harder - revenge by the same means is not the 
answer (and in many  cases its not the revenge but they just want to show 
themselve off as being more daring then the last guy). But then again since
in US most people support death penalty and the government itself did not 
care how many innocent afghans died when they were doing their own revenge,
then what are we expecting from the company execs - they might well buy this 
crap strike-back with a vengence firewall. I do hope, that if it were 
to happen, it'll quickly become clear that this is totally illegal and
both Simbiot and those who bought it will end up in court and bankrupt
and that will establish good precidence for the future.

But as I mentioned in thread last week  and as Sean Donelan mentioned 
today too - all this looks a like like a publicity hype in the making
for a probably crappy product (but not crappy in the way that it'll
actually force its users to break the law). We have about 20 days to
wait before its released, so lets just wait and see how bad it really is.

William Leibzon
Elan Networks

Discussion Communities

About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home

Merit Network, Inc.