[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Reporting DDOS reflection attacks

Subject: Reporting DDOS reflection attacks
From: rdobbins at arbor.net (Roland Dobbins)
Date: Sat, 08 Nov 2014 17:14:02 +0700
In-reply-to: <CACrsH-553kDSuKYnte=apYh8Sw4EGj3rh3+0dtJrA18SW0ijkw@mail.gmail.com>
References: <[email protected]> <[email protected]> <CANZ_BxpUjK_shd+c=LDduM5moWsJ2O8pNaSo53Gvqo+5aX=i9w@mail.gmail.com> <CACrsH-553kDSuKYnte=apYh8Sw4EGj3rh3+0dtJrA18SW0ijkw@mail.gmail.com>

On 8 Nov 2014, at 17:09, McDonald Richards wrote:

> Any failure or success stories you can share?

In my experience, it's the generally broadband access operators who will 
sometimes respond, when contacted about reflection/amplification attacks 
leveraging misconfigured, abusable CPE.

Generally speaking, networks running misconfigured, abusable devices by 
definition aren't very actively managed - and so those operators don't 
often respond, unless one has personal contacts within the relevant 
group(s).

YMMV, of course.

-----------------------------------
Roland Dobbins <rdobbins at arbor.net>

References:
- Reporting DDOS reflection attacks
  - From: srn.nanog at prgmr.com (srn.nanog at prgmr.com)
- Reporting DDOS reflection attacks
  - From: rdobbins at arbor.net (Roland Dobbins)
- Reporting DDOS reflection attacks
  - From: paul.w.bennett at gmail.com (Paul Bennett)
- Reporting DDOS reflection attacks
  - From: mcdonald.richards at gmail.com (McDonald Richards)

Prev by Date: Reporting DDOS reflection attacks
Next by Date: Reporting DDOS reflection attacks
Previous by thread: Reporting DDOS reflection attacks
Next by thread: Reporting DDOS reflection attacks
Index(es):
- Date
- Thread