[c-nsp] rate limit dns
Gert Doering
gert at greenie.muc.de
Wed Jan 1 07:58:39 EST 2014
Hi,
On Wed, Jan 01, 2014 at 12:36:58PM +0000, Dobbins, Roland wrote:
> Direct abuse of authoritative servers using spoofed ANY queries and other spoofed queries intended to generate large responses goes back many years, absolutely. But we still see lots of attacks utilizing open recursors; direct abuse of authoritative servers hasn't superseded or eliminated the use of open recursors, attacks leveraging open recursors take place every day, as you know.
*That* I can fully agree with :-)
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 305 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20140101/95a6c5b6/attachment-0001.sig>
More information about the cisco-nsp
mailing list