[c-nsp] rate limit dns
Gert Doering
gert at greenie.muc.de
Wed Jan 1 07:27:34 EST 2014
Hi,
On Wed, Jan 01, 2014 at 12:22:56PM +0000, Dobbins, Roland wrote:
> On Jan 1, 2014, at 7:21 PM, Gert Doering <gert at greenie.muc.de> wrote:
>
> > Which is why Paul Vixie's RRL or Lutz Donnerhacke's dampening patches for BIND exist.
>
> Yes, hence 'not all; directly-spoofed ANY attacks and the like, which don't involve open recursors, are the exception'.
Abusing authoritatives is not "the exception", and has not been for over a
year.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 305 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20140101/3d3583c2/attachment.sig>
More information about the cisco-nsp
mailing list