[dns-operations] BIND Security Advisory

Roland Dobbins rdobbins at arbor.net
Wed Jul 29 12:29:24 UTC 2009

On Jul 29, 2009, at 5:22 PM, Stephane Bortzmeyer wrote:

> Which are typically not reachable from the outside.

But which could be attacked by botted end-customer hosts which have  
access to said recursive nameservers, yes?

Also, note that far too many folks leave open recursors hanging about,  
as evidenced by the large DNS reflection attacks which occur from time  
to time.

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

         Unfortunately, inefficiency scales really well.

		   -- Kevin Lawton

More information about the dns-operations mailing list