[dns-operations] EDNS0

Rob Thomas robt at cymru.com
Wed Mar 1 13:02:16 UTC 2006

Hi, team.

] How is that different then amplification with recursive dns servers?
] (since in both cases the a smaller request packet of about 40-50 bytes 
] causes dns server to send large response up to 500bytes to forged 
] source ip address)

One difference is that the victim would receive the response
from one (authoritative) name server instead of from 122000
(recursive) name servers.

Rob Thomas
Team Cymru
ASSERT(coffee != empty);

More information about the dns-operations mailing list