[nsp-sec] ACK 4323 700K Open Resolver List
Gassen, Derek
Derek.Gassen at twtelecom.com
Mon Apr 13 20:02:06 EDT 2009
ACK for 4323.
Derek Gassen
Security Engineering
tw telecom inc.
-----Original Message-----
From: nsp-security-bounces at puck.nether.net
[mailto:nsp-security-bounces at puck.nether.net] On Behalf Of Stephen Gill
Sent: Friday, April 10, 2009 5:55 PM
To: NSP-SEC List
Subject: [nsp-sec] 700K Open Resolver List
----------- nsp-security Confidential --------
Hi Team,
I took a somewhat restrictive view of the pcaps we have and parsed out
about 700K open resolvers used in the latest DNS amplifier attack across
~10K ASNs. I believe there were closer to 1 Million total.
You can find the data split up by ASN here:
https://www.cymru.com/nsp-sec/Owned/recursive3/
ASNs affected:
https://www.cymru.com/nsp-sec/Owned/recursive3/asns.txt
Please do not download the entire list and only fetch the ones you have
control or influence over.
Comments/questions welcome & have a great weekend!
Cheers,
-- steve
--
Stephen Gill, Chief Scientist, Team Cymru http://www.cymru.com | +1 630
230 5423 | gillsr at cymru.com
_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net
https://puck.nether.net/mailman/listinfo/nsp-security
Please do not Forward, CC, or BCC this E-mail outside of the
nsp-security
community. Confidentiality is essential for effective Internet security
counter-measures.
_______________________________________________
---
The content contained in this electronic message is not intended to constitute
formation of a contract binding tw telecom. tw telecom will be contractually
bound only upon execution, by an authorized officer, of a contract including
agreed terms and conditions or by express application of its tariffs. This message
is intended only for the use of the individual or entity to which it is addressed. If
the reader of this message is not the intended recipient, or the employee or agent
responsible for delivering the message to the intended recipient, you are hereby
notified that any dissemination, distribution or copying of this message is strictly
prohibited. If you have received this communication in error, please notify us
immediately by replying to the sender of this E-Mail or by telephone.
More information about the nsp-security
mailing list