[dns-operations] Limiting DNSSEC-based amplification attacks (Was:Weird TXT record
Hauke Lampe
lampe at hauke-lampe.de
Fri Jun 24 04:52:30 UTC 2011
On 22.06.2011 13:45, Stephane Bortzmeyer wrote:
> On Wed, Jun 22, 2011 at 11:14:31AM +0100,
>
>> udp-max-size 1460
>
> Nice. But nsd does not seem to have a similar option.
nsd 3.2.5+ has it:
| 22 December 2009: Matthijs
| - New options 'ipv4-edns-size:' and 'ipv6-edns-size'.
E.g:
ipv4-edns-size: 1464
ipv6-edns-size: 1232
Hauke.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20110624/16309423/attachment.sig>
More information about the dns-operations
mailing list