It's fine to have a public UDP server on the internet. Just make sure it can't b... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

collinmanderson on Oct 8, 2016 | parent | context | favorite | on: IP Spoofing

It's fine to have a public UDP server on the internet. Just make sure it can't be used to amplify/mirror attacks.

QUIC uses tokens for example. https://docs.google.com/document/d/1g5nIXAIkN_Y-7XJW5K45IblH...

hueving on Oct 8, 2016 [–]

That's not even enough. The token generation can be used as an amplification vector.

That's why this approach of attacking UDP instead of spoofing is misguided.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact