xml-dev - RE: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Atta

RE: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Atta

[ Lists Home | Date Index | Thread Index ]

To: 'Danny Ayers' <danny666@virgilio.it>, xml-dev@lists.xml.org
Subject: RE: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Attacks?
From: "Bullard, Claude L (Len)" <clbullar@ingr.com>
Date: Thu, 5 Feb 2004 08:21:49 -0600

Yep.  This isn't an MS problem.  MS exacerbates it 
with such things as support for raw sockets in WinXP according 
to Steve Gibson, but the fault lies in the design of the Internet 
itself;  specifically, TCP/IP.  It's another case of 80/20 coming 
back to bite us. 

The web was fielded witlessly.

The problem is the witlessness is feeding on itself and 
pushing requirements from multiple sources to put enterprises 
on the web that clearly can't take the risk because they 
risk the safety of the public.  Some industry working 
groups and big player vendors are going to have 
face up to this before the bad thing happens.

len


From: Danny Ayers [mailto:danny666@virgilio.it]

Jacques Distler offered a simple explanation for the phenomenon in general -
software monoculture. In the case of most virus problems, the monoculture is
essentially that of Microsoft. But the web itself is built on the
monoculture of TCP/IP, so the problem runs deeper, so even without the Borg
we'd still have to cross this bridge sooner or later. Or rather stop
unwanted packets crossing it.

Follow-Ups:
- Re: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Attacks?
  - From: Michael Champion <mc@xegesis.org>

Prev by Date: [ANN] XMLOpen Conference Reschedules
Next by Date: Re: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Attacks?
Previous by thread: [ANN] XMLOpen Conference Reschedules
Next by thread: Re: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Attacks?
Index(es):
- Date
- Thread