Fletcher,
Either option would work in theory, but #2 seems like the proper way to resolve this. Alfred spoke with me about this back in late 2015, but wasn't really concerned with patching it then, since then we've worked out many effective methods of filtering these attacks. (header checksums, rate limits, udp hashlimits) each method comes with their own tax on resources of our mitigation hardware. As a provider, having a unified, simple solution to filter these would be nice. Assuming this breaks older queries, there should also be a pretty significant decrease in the amount of attacks, as well as increasing the bandwidth required to launch them.
_______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/
