Read the friendly BCP
Spoofing (of the source of malicious packet floods) should no longer be an issue, if only more service providers would implement the recommendations of BCP 38, which dates from May 2000. (BCPs are what RFCs become when they grow up.)
http://www.rfc-editor.org/rfc/bcp/bcp38.txt