Re: tcp vulnerability? haven't seen anything on it here...

From: Florian Weimer
Date: Thu Apr 22 2004 - 16:16:16 EST

Horst von Brand <vonbrand@xxxxxxxxxxxx> writes:

> If everybody (or at least the bigger knots) filters spoofed traffic,
> this ceases to be a problem. And that solves a shipload of other
> problems, so...

There isn't much incentive to deploy filters so that other people
don't suffer. So it takes a long time until it's almost universally
implemented. (We catch less backscatter from DDoS attacks than a few
years ago, so the situation may actually be improving.)

Current mail filters: many dial-up/DSL/cable modem hosts, and the
following domains:,,,,,,
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at
Please read the FAQ at