[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

an effect of ignoring BCP38

Subject: an effect of ignoring BCP38
From: jrhett at netconsonance.com (Jo Rhett)
Date: Thu, 11 Sep 2008 00:28:25 -0700
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <00d501c90e99$ffb4e480$ff1ead80$@com> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected].> <[email protected]>

On Sep 6, 2008, at 6:49 AM, k claffy wrote:
> do that many networks really allow spoofing?  i used
> to think so, based on hearsay, but rob beverly's
> http://spoofer.csail.mit.edu/summary.php suggests
> things are a lot better than they used to be, arbor's
> last survey echos same.  are rob's numbers inconsistent
> with numbers anyone else believes to be true?

I hate to spoil anyone's fantasies about this topic, but yeah.    
Nearly everyone does.

I've been in, near, or directly in touch with enough big provider NOCs  
in the last year on various DoS attach research issues, and nearly  
nobody... that's right NONE of them were using BCP38 consistently.   
Name the five biggest providers you can think of.  They ain't doing  
it.   Now name the five best transit providers you can think of.  They  
ain't doing it either.  (note that all of these claimed to be doing so  
in that survey, but during attack research they admitted that it was  
only in small deployments)

If someone told me (truthfully) that there was 10% BCP38 compliance  
out there, I'd be surprised given what I have observed.

We don't have a long ways to finish.  We have a long ways to start.   
Finishing isn't even within the horizon yet.

-- 
Jo Rhett
Net Consonance : consonant endings by net philanthropy, open source  
and other randomness

Follow-Ups:
- an effect of ignoring BCP38
  - From: pekkas at netcore.fi (Pekka Savola)
- an effect of ignoring BCP38
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)

References:
- Force10 Gear - Opinions
  - From: jrhett at netconsonance.com (Jo Rhett)
- Force10 Gear - Opinions
  - From: pauldotwall at gmail.com (Paul Wall)
- Force10 Gear - Opinions
  - From: james at towardex.com (James Jun)
- BCP38 dismissal
  - From: jrhett at netconsonance.com (Jo Rhett)
- BCP38 dismissal
  - From: ge at linuxbox.org (Gadi Evron)
- BCP38 dismissal
  - From: patrick at ianai.net (Patrick W. Gilmore)
- BCP38 dismissal
  - From: ge at linuxbox.org (Gadi Evron)
- an effect of ignoring BCP38
  - From: bmanning at vacation.karoshi.com (bmanning at vacation.karoshi.com)
- an effect of ignoring BCP38
  - From: kc at caida.org (k claffy)

Prev by Date: Teleglobe appears to be spam-source zombie network?
Next by Date: BCP38 dismissal
Previous by thread: an effect of ignoring BCP38
Next by thread: an effect of ignoring BCP38
Index(es):
- Date
- Thread