[ianhawes]

Yeah, the parent comment is not accurate. IP spoofing is only possible if you control the entire L4 stack.

[DarylZero]

There's network-level "IP spoofing" and then there's just routing traffic through an IP-diverse botnet.

[awsthro00945]

Why are you assuming that a determined attacker doesn't control your L4 stack? MITMs are a threat, your network could be compromised, routers (especially consumer routers) are rife with vulnerabilities. This is the entire reason "zero trust" is pushed.

[unionpivo]

> ... determined attacker doesn't control your L4 stack?

Lets face it, for most businesses and pretty much all home users* the best they can hope to achieve is not to get owned by various automated attacks.

If some determined attacker is trying to get in, he will get in.

* Sure there are exceptions

[nyolfen]

people who control the l4 stack probably aren't brute forcing my ssh server

[awsthro00945]

"the attacker probably won't do that" is not a security control.

[tremon]

"the attacker probably won't do that" is very much part of threat modeling, the #1 step in any serious security design.

[awsthro00945]

In any serious security design, "the attacker probably won't do that" would and should be shot down immediately. If your security strategy is hoping that an attacker will be kind enough to not exploit your open vulnerability, you've already failed at threat modeling and at security.

If an attacker can do it, you must assume they will do it. Because they will. That should be the starting point for any threat model.

[smegsicle]

"the attacker probably won't intercept the mail and install rootkits on brand new hardware"

"the attacker probably won't read my password through the wall from the radiation off my keyboard"

if your starting point is APT-level adversary then you might as well give up

[lamontcg]

What brand of locks do you have on your doors at home and does the lockpicking lawyer have a video of going through them in a few seconds?

[nyolfen]

that's cool man, i'm still going to block the 99.9999% of attackers that don't own my isp. you are conflating "bad idea in extremely exotic scenario" with "counterproductive"; ever heard of defense in depth?