Anti-DDOS Alliance In The Works?

Rackemup writes: "This article on ZDNET says McAfee and some anti-DDOS vendors are finally teaming up to address DDOS attacks and Code-Red-like network scanning. Seems like they're finally catching on that a purely reactive approach to Internet and virus attacks isn't going to cut it anymore, even after all the media coverage of these latest virus attacks there are still loads of zombie machines out there merrily scanning away, looking for others to infect."

Re:The hardware companies need to be involved too

Intrusion detection boxes already do this. The problem is most networks hosting the devices scanning (ex: @home and dsl providers) are not monitoring for it.

Tired of spoofed packets

[darf]

I think a big help to everyone would be if ISPs made sure that packets leaving their networks had a source address that belonged within their network.

I'm not sure why *I* have to deny all RFC1918 traffic and other garbage on my border router. In my shop, a packet doesn't leave unless its source address is from my network.

It could be easily done at the ISPs lowest branch routers so it wouldn't be too hard to configure or cost too much in performance.

Seems to me this would be the responsible thing to do for the entire community. I've never heard a reasonable argument for letting packets out onto the Internet that don't have a source address in your network.