[dns-operations] Botnets, botnets everywhere

Roland Dobbins rdobbins at arbor.net
Thu Sep 11 13:51:00 UTC 2014

On Sep 11, 2014, at 9:46 PM, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:

> Many open resolvers do not forward directly but send to a big resolver
> such as Google Public DNS (which you cannot obviously blacklist). The
> authoritative name servers therefore do not see directly the open
> resolver.]

Yes.  The blacklisting recommendation is for the open resolver
operator who is seeing the queries/responses in question (i.e., the OP
in this thread).

Roland Dobbins <rdobbins at arbor.net>

More information about the dns-operations mailing list