[dns-operations] Slow Drip DDOS Attack Research

Bill Woodcock woody at pch.net
Wed Nov 7 02:19:49 UTC 2018

> On Nov 6, 2018, at 5:55 PM, Warren Kumari <warren at kumari.net> wrote:
> I'm somewhat surprised that this document makes no mention of DNSSEC /  RFC8198 "Aggressive Use of DNSSEC-Validated Cache”.

That is, indeed, an excellent way to isolate attack traffic from authoritatives.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20181106/e0a3fbe7/attachment.sig>

More information about the dns-operations mailing list