[44903] in North American Network Operators' Group
Re: microsoft
daemon@ATHENA.MIT.EDU (Randy Bush)
Fri Dec 28 13:21:52 2001
From: Randy Bush <randy@psg.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
To: Christopher Schulte <schulte+nanog-post@nospam.schulte.org>
Cc: nanog@merit.edu
Message-Id: <E16K1d8-000EgJ-00@rip.psg.com>
Date: Fri, 28 Dec 2001 10:21:18 -0800
Errors-To: owner-nanog-outgoing@merit.edu
>> attacks? you mean when they shot themselves in the 2182 foot?
> I'm not aware of the exact reasons for their problems.
someone misconfigured a router so dns could not serve from behind it.
this is life, stuff happens. but they had ALL the servers for their
domain behind that ONE router, despite massive net lore and a bcp not
to do so. so the entire domain and a number of other pieces were
unreachable for a long time. yucchhy.
the reason i belabor this here is not to abuse this particular foot
shooter, but rather to emphasize yet again, diversify your dns servers
*widely*, physically and topologically. see rfc 2182.
randy
