[nsp-sec] DNS poisoning activity in the wild
Jared Mauch
jared at puck.nether.net
Wed Jul 30 11:26:57 EDT 2008
I posted two more graphics which illustrate a possible
"test" at 0400 utc then the real step after 0600.
https://puck.nether.net/nsp-security/dns/20080730_2d_bps_udp_53.png
https://puck.nether.net/nsp-security/dns/20080730_2d_pps_udp_53.png
- Jared
On Wed, Jul 30, 2008 at 11:16:17AM -0400, Jared Mauch wrote:
> ----------- nsp-security Confidential --------
>
> On Wed, Jul 30, 2008 at 10:36:44AM -0400, Jose Nazario wrote:
> > ----------- nsp-security Confidential --------
> >
> > after seeing hdm blog this:
>
> I'm seeing an uptick in traffic.
>
> https://puck.nether.net/nsp-security/dns/bps_rate_udp_53_20080730.png
> https://puck.nether.net/nsp-security/dns/pps_rate_udp_53_20080730.png
>
> Remember, your userid/password is the same as your
> email and mailman password.
>
> If you have lost/forgotten these, you can obtain them here:
>
> http://puck.nether.net/mailman/options/nsp-security
>
>
> --
> Jared Mauch | I work for but do not always represent NTT America
> list admin | +1 313 506 4307 * send list policy questions to
> | nsp-security-owner at puck.nether.net
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
--
Jared Mauch | I work for but do not always represent NTT America
list admin | +1 313 506 4307 * send list policy questions to
| nsp-security-owner at puck.nether.net
More information about the nsp-security
mailing list