Two underground magazines have published code enabling denial-of-service attacks through TCP half-open connections. While the origin of attacks is difficult to identify, some reports have been able to trace attacks back to their source. The document provides recommendations for internet service providers and their customers to implement input source filtering on routers to reduce the impact of these spoofing attacks. It also notes that while a complete solution does not yet exist, steps can be taken to lessen the attacks' effects.