[dns-operations] DNS deluge for x.p.ctrc.cc

Gadi Evron ge at linuxbox.org
Mon Feb 27 21:55:04 UTC 2006


Joe Greco wrote:
>>>Both George and Joe are right. It is a problem. Still, solving one and
>>>leaving another untended just because one was used as the attack vector
>>>is silly. Are we to forever leave problem unattended?
>>
>>Gadi,
>>
>>I'm unclear on what you are suggesting. What problem is left unattended with
>>DNS if you cannot spoof UDP packets?
> 
> 
> It's the old
> 
> "We must do SOMETHING!" + "This is something" => "We must do THIS!"
> 
> As much as I believe in belt and suspenders, I only believe in that when
> both the belt and the suspenders are appropriate solutions.

Sorry Joe, I'm just not following.

Can you explain why trying to resolve the local exploit when the attack 
was facilitated by a remote exploit is not also important? Especially 
when the remote one is relatively a whole lot more difficult?

I am not saying band-aids are THE THING. I am saying they are THE THING 
when you need to stop the bleeding NOW.

If the reason you won't use them is because you fear they may stay 
there, well, that's a whole different issue.

Reactive is how us humans work. I keep preaching about it but when it 
comes down to it, that is where we are at with this threat right now.

Have a time machine, anyone?



More information about the dns-operations mailing list