[169222] in North American Network Operators' Group
Re: random dns queries with random sources
daemon@ATHENA.MIT.EDU (Joe Maimon)
Wed Feb 19 00:45:16 2014
Date: Wed, 19 Feb 2014 00:44:43 -0500
From: Joe Maimon <jmaimon@ttec.com>
To: Doug Barton <dougb@dougbarton.us>, nanog@nanog.org
In-Reply-To: <5304323F.3020405@dougbarton.us>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Doug Barton wrote:
> On 02/18/2014 07:59 PM, Joe Maimon wrote:
> Are you running open resolvers?
Yes
> If so, please stop doing that,
No
> it's
> widely known to be a bad idea for over a decade now,
At this point, doing anything on the internet is a bad idea.
> and you are
> providing the bad guys a tool to use for DDOS attacks.
Get back to me when the same cant be done with auth servers.
>
> If it's something else, please speak up. Regardless of the goal of this
> particular issue, the way to solve the root problem is to prevent the
> spoofed packets from getting to your servers in the first place.
>
> Doug
>
>
>
