[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <00cf01c6585b$5f45b570$69fea8c0@honeypot>
Date: Tue, 4 Apr 2006 22:45:52 -0400
From: "Geo." <geoincidents@....net>
To: <bugtraq@...urityfocus.com>
Subject: Re: recursive DNS servers DDoS as a growing DDoS problem
> Geo, the default is bad. However, it is not a Microsoft issue, this is a
> spoofing issue. Many like to bash Microsoft, some hate them. Myself I am
> known as a Microsoft critic at times.
Please don't misunderstand me, I'm not bashing MS or even being a critic
(although I have been at times), heck I played sysop on CIS:WINNT for 7
years and was an NT MVP for at least that long so just recognize my comments
are coming from an intimate understanding of the MS user base and product
default values. (enough on MS)
> Why are we arguing on the colour of bytes when we could be discussing
> making trivial spoofing a thing of the past?
I agree, and ingress/egress filters for all except major backbones are
really quite easy to put in place. I don't even see resistance to the idea,
just a lot of people who don't know it needs to be done or why. Certainly
Paul Vixie's interview the other day will help (he did a very nice job of
getting the word out) but this really needs a big flood that makes all the
news casts and then the media has to mention the fix.
Geo.
Powered by blists - more mailing lists