[dns-operations] DNS ANY record queries - Reflection Attacks
Tony Finch
dot at dotat.at
Tue Sep 11 10:15:20 UTC 2012
Robert Schwartz <smellyspice at gmail.com> wrote:
>
> The question I have for you all is: Is this something affecting other
> operators? How have you been dealing with it?
Yes, this is affecting the cam.ac.uk authoritative name servers and I know
of a few others. We're using the BIND RRL patch, amongst other
mitigations. Sadly the attackers are oblivious to the fact that they are
ineffective, and keep sending the junk regardless.
Tony.
--
f.anthony.n.finch <dot at dotat.at> http://dotat.at/
Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first.
Rough, becoming slight or moderate. Showers, rain at first. Moderate or good,
occasionally poor at first.
More information about the dns-operations
mailing list