[dns-operations] Limiting DNSSEC-based amplification attacks (Was: Weird TXT record

Dobbins, Roland rdobbins at arbor.net
Mon Jun 27 04:31:06 UTC 2011

On Jun 24, 2011, at 10:45 PM, David Conrad wrote:

> I'm thinking rate limiting responses is a good thing.

Not via network QoS mechanisms, it isn't.

Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

		The basis of optimism is sheer terror.

			  -- Oscar Wilde

More information about the dns-operations mailing list