[nsp-sec] DNS and SNMP Reflection Attack Hosts
Jason Chambers
jchambers at ucla.edu
Mon Jun 24 20:05:40 EDT 2013
On 6/24/13 9:13 AM, Joel L. Rosenblatt wrote:
> ----------- nsp-security Confidential --------
>
> Hi,
>
> I have been looking at the Columbia machines of this list and I notice
> that most of them are printers
>
> Is anyone else seeing this?
>
Yes, the ipRouteDest object is one I've seen used to generate a decent
sized reply to a spoofed SNMP request.
http://www.alvestrand.no/objectid/1.3.6.1.2.1.4.21.1.1.html
--Jason
More information about the nsp-security
mailing list