[nsp-sec] 700K Open Resolver List
Sebastian Abt
sa at rh-tec.de
Sat Apr 11 03:35:56 EDT 2009
ACK 25560
sebastian
* Stephen Gill wrote:
> ----------- nsp-security Confidential --------
>
> Hi Team,
>
> I took a somewhat restrictive view of the pcaps we have and parsed out about
> 700K open resolvers used in the latest DNS amplifier attack across ~10K
> ASNs. I believe there were closer to 1 Million total.
>
> You can find the data split up by ASN here:
>
> https://www.cymru.com/nsp-sec/Owned/recursive3/
>
> ASNs affected:
>
> https://www.cymru.com/nsp-sec/Owned/recursive3/asns.txt
>
> Please do not download the entire list and only fetch the ones you have
> control or influence over.
>
> Comments/questions welcome & have a great weekend!
>
> Cheers,
> -- steve
>
> --
> Stephen Gill, Chief Scientist, Team Cymru
> http://www.cymru.com | +1 630 230 5423 | gillsr at cymru.com
>
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
--
fon: +49 69 95411 15 e-mail: sa at rh-tec.de
fax: +49 69 95411 45 mobile: +49 69 95411 55
rh-tec Business GmbH http://www.rh-tec.de/
Ringstrasse 36 32584 Loehne
Geschaeftsfuehrer: Gerhard Roehrmann
Registergericht: AG Bad Oeynhausen, HRB 8112
More information about the nsp-security
mailing list