[111071] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Tightened DNS security question re: DNS amplification attacks.

daemon@ATHENA.MIT.EDU (fredrik danerklint)
Wed Jan 28 07:19:25 2009

From: fredrik danerklint <fredan-nanog@fredan.se>
To: nanog@nanog.org
Date: Wed, 28 Jan 2009 13:16:01 +0100
In-Reply-To: <2ADA77D9DC5188469280D991E524971201568856@VIC01EXC01.internal.govt>
Errors-To: nanog-bounces@nanog.org

At 12:07:16 local time here in sweden, I saw a new address 70.86.80.98.
At 12:09:36 another new address 64.57.246.123 
At 12:20:10 the address 70.86.80.98 started to ask for funny domain name like:
"pjphcdaaaafwu0000dgaaabaaacboinf". This ended at 12:55:01 when it was back to 
just ask for the .NS records again.

-- 
//Fredrik Danerklint
//Fredan


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[111071] in North American Network Operators' Group

Re: Tightened DNS security question re: DNS amplification attacks.

daemon@ATHENA.MIT.EDU (fredrik danerklint)Wed Jan 28 07:19:25 2009

daemon@ATHENA.MIT.EDU (fredrik danerklint)
Wed Jan 28 07:19:25 2009