In message <[EMAIL PROTECTED]> Eliot Lear writes: > > Curtis Villamizar wrote: > > > [What would one do with information about an attacking ISPs] > > > > > Not a solved problem. Back in NSFNET days it was a "we don't want to > > do this but if we do it is going to hurt you a lot more than it will > > hurt us" situation. Not always so today and DDoS makes the job > > harder (multiple upstreams, potentially millions of sources). > > > > Indeed. For example (by close analogy): > http://infosecon.net/workshop/pdf/emailblocking.pdf
Spam blocking is blocking. NSFNET used a threat of service termination but didn't need to follow through. I do remember a regional network shutting down a university for 3 days due to lack of response to a complaint of being used to launch attacks. Curtis _______________________________________________ Int-area mailing list [email protected] https://www1.ietf.org/mailman/listinfo/int-area
