What is evil: IP spoofing or Distributed attacks? (was Re: DDOS anecdotes)