[dns-operations] DNS deluge for x.p.ctrc.cc
Gadi Evron
ge at linuxbox.org
Mon Feb 27 12:11:08 UTC 2006
On Sun, 26 Feb 2006, Rob Thomas wrote:
> Hi, team.
>
> ] As has been mentioned before, the full solution comes down to the age old
> ] problem of proper spoof prevention throughout the 'net. Not exactly an
> ] easy one to solve, though.
>
> Agreed, plus the implementation of DNS best practices. One of the
> challenges is that DNS administrators are often not in the same
> team, management chain, or organization as the network
> administrators. This has caused difficulty even at the TLD level.
"Who is the linux geek in your org?" That somtimes finds the DNS guy. :)
As to spoofing, I doubt Fergie will agree that it is "not solvable", why
do you think so?
Unrelated.. going back to the post you answered..
One thing I do know, though, is that this comes to once again show that
just because something is not "currently" being exploited, doesn't mean it
doesn't have to get fixed.
I believe just a couple of mounths ago some of us argued on if spoofing
even needs to get any attention, as most DDoSing happens with botnets.
Raises a bell? It's what *most* people in the net-ops world say to this
day. How many other problems are we going to ignore until they are here -
yesterday?
This isn't about philosophy, it's about how we keep doing things. Forget
malice, any mistake that can happen, will happen. That has been proven
beyond doubt.
Gadi.
>
> Thanks,
> Rob.
> --
> Rob Thomas
> Team Cymru
> http://www.cymru.com/
> ASSERT(coffee != empty);
>
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.oarci.net
> http://lists.oarci.net/mailman/listinfo/dns-operations
>
More information about the dns-operations
mailing list