|
|
|
|
|
|
by benkillin
3973 days ago
|
|
|
This exact suggestion is referenced in the article. "To prevent the spoofed reflection attacks, all network operators should implement anti-spoof address filtering [RFC2827]. This prevents the trigger of the DRDoS." http://tools.ietf.org/html/rfc2827 "This paper discusses a simple, effective, and straightforward method for using ingress traffic filtering to prohibit DoS attacks which use forged IP addresses to be propagated from 'behind' an Internet Service Provider's (ISP) aggregation point." |
|
|