To be honest I don't even remember one recent dDOS attack with spoofed
Ips at big sites.
I do remember dDOS attacks with real Ips taken over by worms.....
If my ISP has the IP Range 192.168.0.0/24 and I send a spoofed packet
from 123.123.123.123 it wont
Pass the router of the ISP since the router knows that 123.123.123.123
CANNOT come from inside and
Drops that package...
-----Original Message-----
From: Stephane Bortzmeyer [mailto:bortzmeyer(_at_)nic(_dot_)fr]
Sent: Tuesday, November 23, 2004 11:55 AM
To: Stefan Engelbert
Cc: spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
Subject: Re: Can the SPF technique be used to stop IP address sp
On Tue, Nov 23, 2004 at 11:48:35AM +0100, Stefan Engelbert
<stefan(_at_)gfi(_dot_)com> wrote a message of 59 lines which said:
I don't think at all IP spoofing is a problem nowadays.
Of course it is, and a big one. dDOS with spoofed IP addresses occur
daily at big sites. But David's solution is hopelessly wrong.
With modern Routers/Switchs you are allready allready protected.
Please explain how I am protected against a spoofing starting on your
site (where you use routers and switches that I do not trust).
This mail was checked for viruses by GFI MailSecurity.
GFI also develops anti-spam software (GFI MailEssentials), a fax server (GFI
FAXmaker), and network security and management software (GFI LANguard) -
www.gfi.com