IETF Logo Mail Archive

Re: [v6ops] Fwd: New Version Notification for draft-wkumari-long-headers-01.txt

sthaug@nethelp.no Fri, 05 July 2013 14:34 UTC

Return-Path: <sthaug@nethelp.no>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 11DAB21F99E1 for <v6ops@ietfa.amsl.com>; Fri, 5 Jul 2013 07:34:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.349
X-Spam-Level:
X-Spam-Status: No, score=-5.349 tagged_above=-999 required=5 tests=[AWL=1.250, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KBaINFBcWY0i for <v6ops@ietfa.amsl.com>; Fri, 5 Jul 2013 07:34:28 -0700 (PDT)
Received: from bizet.nethelp.no (bizet.nethelp.no [195.1.209.33]) by ietfa.amsl.com (Postfix) with SMTP id F309121F9B25 for <v6ops@ietf.org>; Fri, 5 Jul 2013 07:34:26 -0700 (PDT)
Received: (qmail 35819 invoked from network); 5 Jul 2013 14:34:24 -0000
Received: from bizet.nethelp.no (HELO localhost) (195.1.209.33) by bizet.nethelp.no with SMTP; 5 Jul 2013 14:34:24 -0000
Date: Fri, 05 Jul 2013 16:34:24 +0200
Message-Id: <20130705.163424.41642834.sthaug@nethelp.no>
To: v6ops@globis.net
From: sthaug@nethelp.no
In-Reply-To: <51D6D6FB.2090401@globis.net>
References: <51D6D4D4.5000704@globis.net> <20130705141735.GT2706@Space.Net> <51D6D6FB.2090401@globis.net>
X-Mailer: Mew version 3.3 on Emacs 21.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Cc: v6ops@ietf.org
Subject: Re: [v6ops] Fwd: New Version Notification for draft-wkumari-long-headers-01.txt
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Jul 2013 14:34:33 -0000

> > ... "drop this UDP/53 flood at the most external borders we can to stop
> > it from overloading internal links".
> No disrespect, but by the time you've detected the attack and put in the
> appropriate L4 filtering config, haven't the attackers long gone?

Not necessarily. We see DNS-based spoofed source amplification attacks
that last for *days*.

Steinar Haug, AS 2116

v2.23.0 | Report a Bug | By Email