11 May
2000
11 May
'00
12:13 a.m.
Hi All, I'd like to bring your attention to a recent Internet-draft. The URL is: http://www.ietf.org/internet-drafts/draft-vshah-ddos-smurf-00.txt This draft proposes a specific (simple) change to RFC1122 which would help reduce the use of Smurf amplification in DDOS attacks. This is augments ingress filtering; it is designed specifically for the case where the attacker (source) is using broadcast on the local LAN as part of a DDOS attack. This is a case where ingress filtering does not help. We are proposing that it be an addition to the standard set by RFC1122. We'd very much like to hear comments from people on this draft. Vipul