[nsp-sec] Reflective DNS DDoS attacks icann.org dnssec Was: Re: DDoS to 212.97.109.168 and 69.172.200.88
Florian Weimer
fweimer at bfk.de
Fri Sep 16 12:47:12 EDT 2011
> I'm wondering if there is any possibility there is a malfunctioning bot
> on those systems that is not properly filling in the correct spoofed
> source IP (aka victim).
I think this would happen if someone spoofed DNS queries on a network
which uses a forced/transparent DNS proxy/resolver.
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the nsp-security
mailing list