[52873] in North American Network Operators' Group
Re: root servers DDoS
daemon@ATHENA.MIT.EDU (John M. Brown)
Mon Oct 21 18:58:08 2002
Date: Mon, 21 Oct 2002 15:57:28 -0700
From: "John M. Brown" <john@chagresventures.com>
To: Sean Donelan <sean@donelan.com>
Cc: Petri Helenius <pete@he.iki.fi>, nanog@merit.edu
In-Reply-To: <Pine.GSO.4.40.0210211733040.16158-100000@clifden.donelan.com>; from sean@donelan.com on Mon, Oct 21, 2002 at 05:38:32PM -0400
Errors-To: owner-nanog-outgoing@merit.edu
I don't think so. We saw problems about 15 min before the nsp-sec
list posting, and at that point the volume was turned up..
I don't beleive ICANN received any "advance" warning....
but don't quote me on that. I'll go find out though
in private,
john brown
On Mon, Oct 21, 2002 at 05:38:32PM -0400, Sean Donelan wrote:
>
> On Tue, 22 Oct 2002, Petri Helenius wrote:
> > Anyone have insight into the (seemingly) DoS attack on root-servers which
> > started around 20 UTC and widened to more servers on 20:35 UTC?
> >
> > Not that itīs causing any serious operational problems but slows down things a
> > lot.
>
> You can see pretty graphs of the server performance at
>
> http://www.root-servers.net/
> http://www.cymru.com/DNS/dns.html
>
> I don't know if the Fed's early warning system was able to warn anyone
> early
> http://www.computerworld.com/securitytopics/security/hacking/story/0,10801,75248,00.html
>
>
>
