[130491] in North American Network Operators' Group
Re: do you use SPF TXT RRs? (RFC4408)
daemon@ATHENA.MIT.EDU (Greg Whynott)
Mon Oct 4 14:54:27 2010
From: Greg Whynott <Greg.Whynott@oicr.on.ca>
To: Suresh Ramasubramanian <ops.lists@gmail.com>
Date: Mon, 4 Oct 2010 14:54:15 -0400
In-Reply-To: <AANLkTi=zpGVDoF4HmwUBaHucpCMQSGJanmGHmsq0Y_Ng@mail.gmail.com>
Cc: "nanog@nanog.org list" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
i think it was an observation they made, and suggestions to make things be=
tter. I don't think the message was "fix this or you'll be off the air on=
e day.". =20
if they have a 56k port speed(stuck in the 80's), there is potential the=
re for a DoS from a large volume of spam back splatter.. 8) =20
over all, I'm inclined to accept your assumptions. =20
-g
On Oct 4, 2010, at 2:38 PM, Suresh Ramasubramanian wrote:
> On Mon, Oct 4, 2010 at 12:47 PM, Greg Whynott <Greg.Whynott@oicr.on.ca> w=
rote:
>>=20
>> A partner had a security audit done on their site. The report said they=
were at risk of a DoS due to the fact they didn't have a SPF record.
>=20
> This is pure unadulterated BS from someone who doesnt understand
> either DDOS mitigation, or SPF .. or more likely both.
>=20
> --=20
> Suresh Ramasubramanian (ops.lists@gmail.com)
