From owner-freebsd-security  Mon May 24  1: 5: 5 1999
Delivered-To: freebsd-security@freebsd.org
Received: from phk.freebsd.dk (phk.freebsd.dk [212.242.40.153])
	by hub.freebsd.org (Postfix) with ESMTP id E9E8C14CB9
	for <freebsd-security@FreeBSD.ORG>; Mon, 24 May 1999 01:05:02 -0700 (PDT)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.40.131])
	by phk.freebsd.dk (8.9.1/8.8.8) with ESMTP id KAA03322;
	Mon, 24 May 1999 10:05:01 +0200 (CEST)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.9.3/8.9.2) with ESMTP id KAA11497;
	Mon, 24 May 1999 10:04:57 +0200 (CEST)
	(envelope-from phk@critter.freebsd.dk)
To: Theo Purmer <theo@tepucom.nl>
Cc: "'freebsd-security@FreeBSD.ORG'" <freebsd-security@FreeBSD.ORG>
Subject: Re: why not take this a little further (proposal) 
In-reply-to: Your message of "Mon, 24 May 1999 10:09:11."
             <01BEA5CD.798B3EC0@theo.tepucom.nl> 
Date: Mon, 24 May 1999 10:04:57 +0200
Message-ID: <11495.927533097@critter.freebsd.dk>
From: Poul-Henning Kamp <phk@critter.freebsd.dk>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


Far more efficiently:  use BGP routes like MAPS does.

Poul-Henning

In message <01BEA5CD.798B3EC0@theo.tepucom.nl>, Theo Purmer writes:
>There has been a lot off postings about that
>imagelock dos attack.
>
>Why not take this a little further and setup a "place"
>where these forms off abuse can be reported and 
>are monitored. When found to be abusive, (sub)nets
>can then be added to a list which is periodically 
>distriuted to update the ipfw scripts of subcribers.
>
>I know there are a lot of security issues surrounding this
>but i think it should be possible.
>
>Also if enough firewalls are frequently updated with this list 
>one would not like his/her (sub)net on the list so maybe people 
>think twice before doing what imagelock is doing
>
>Theo Purmer
>Tepucom
>
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-security" in the body of the message
>

--
Poul-Henning Kamp             FreeBSD coreteam member
phk@FreeBSD.ORG               "Real hackers run -current on their laptop."
FreeBSD -- It will take a long time before progress goes too far!


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message