[161780] in North American Network Operators' Group
Re: Open Resolver Problems
daemon@ATHENA.MIT.EDU (Tom Paseka)
Tue Mar 26 22:08:05 2013
In-Reply-To: <CAEmG1=oXXwHObBcBaRTFTj9-uyq_dFfB4j63LAmKp8Y4hdT+Wg@mail.gmail.com>
Date: Tue, 26 Mar 2013 19:07:16 -0700
From: Tom Paseka <tom@cloudflare.com>
To: Matthew Petach <mpetach@netflight.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Mar 26, 2013 at 7:04 PM, Matthew Petach <mpetach@netflight.com>wrot=
e:
> On Tue, Mar 26, 2013 at 6:06 PM, John Levine <johnl@iecc.com> wrote:
> >>As a white-hat attempting to find problems to address through legitimat=
e
> means, how
> >>do you =85
> >
> > You make friends with people with busy authoritative servers and see
> > who's querying them.
>
> I'm confused. Don't most authoritative servers have to
> answer to just about anyone in order to be useful?
>
> Matt
>
Authoritative DNS servers need to implement rate limiting. (a client
shouldn't query you twice for the same thing within its TTL).
