[10075] in cryptography@c2.net mail archive
Re: On ISPs Not Filtering Viruses
daemon@ATHENA.MIT.EDU (Bill Frantz)
Wed Jan 9 16:40:47 2002
Message-Id: <v03110708b860f8b35cad@[165.247.216.33]>
In-Reply-To: <15417.58602.401916.864731@cabernet.nelson.monkey.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Tue, 8 Jan 2002 11:33:17 -0800
To: Nelson Minar <nelson@monkey.org>
From: Bill Frantz <frantz@pwpconsult.com>
Cc: cryptography@wasabisystems.com
At 10:11 AM -0800 1/7/02, Nelson Minar wrote:
>I'm writing because I find it interesting that some folks here *like*
>the idea of their ISP filtering content. I find that surprising! I
>assume it's motivated by the huge problem of viruses, but wouldn't it
>be better to fix the clients, not the pipes? There are a whole lot of
>risks in a network layer suddenly doing application-layer things.
There is one case where it makes sense for people to have their ISPs filter
packets, and this is in response to a denial of service (DOS) attack. If
you are connected to your ISP thru a link which is slow compared with the
main internet (e.g. connected thru DSL or a T1), then a DOS attack can
saturate the link between you and your ISP. The only solution I know of is
to have your ISP filter the offending packets before they hit your link. A
number of people have used this technique to remain "on the air" in the
midst of a DOS attack.
Cheers - Bill
-------------------------------------------------------------------------
Bill Frantz | The principal effect of| Periwinkle -- Consulting
(408)356-8506 | DMCA/SDMI is to prevent| 16345 Englewood Ave.
frantz@pwpconsult.com | fair use. | Los Gatos, CA 95032, USA
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
