[nsp-sec] j.root-servers.net ddos earlier?
Jose Nazario
jose at arbor.net
Fri Jun 6 14:44:33 EDT 2008
ATLAS saw a huge bunch of UDP traffic from j.root-servers.net. while it's
entirely possible that someone popped it and is scanning from it, it's
more likely that it's blowback from a spoofed UDP flood against it.
can anyone confirm?
start time: about 08:00 GMT 5 june 2008
end time: about 16:45 GMT 6 june 2008
protocol: UDP
thanks ...
--
-------------------------------------------------------------
jose nazario, ph.d. <jose at arbor.net>
security researcher, office of the CTO, arbor networks
v: (734) 821 1427 http://asert.arbornetworks.com/
More information about the nsp-security
mailing list