[161721] in North American Network Operators' Group
Re: Open Resolver Problems
daemon@ATHENA.MIT.EDU (Dobbins, Roland)
Tue Mar 26 08:01:51 2013
From: "Dobbins, Roland" <rdobbins@arbor.net>
To: NANOG <nanog@nanog.org>
Date: Tue, 26 Mar 2013 12:01:32 +0000
In-Reply-To: <465966A5F5B867419F604CD3E604C1E53B089470@PRA-DCA-MAIL.pra.ray.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mar 26, 2013, at 6:50 PM, Jamie Bowden wrote:
> let's suppose I just happen to have, or have access to, a botnet comprise=
d of (tens of) millions of random hosts all over the internet, and I feel l=
ike destroying your DNS servers via DDoS;
DNS reflection/amplification attacks aren't intended as attacks against the=
DNS, per se; they're intended to crush any/all targeted servers and/or fil=
l transit pipes.
Same for SNMP and ntp reflection attacks.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins@arbor.net> // <http://www.arbornetworks.com>
Luck is the residue of opportunity and design.
-- John Milton
