[63177] in North American Network Operators' Group
Re: Another DNS blacklist is taken down
daemon@ATHENA.MIT.EDU (Dan Armstrong)
Mon Sep 29 13:32:21 2003
Date: Mon, 29 Sep 2003 13:11:08 -0400
From: Dan Armstrong <dan@beanfield.com>
Cc: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
Jared Mauch wrote:
> On Mon, Sep 29, 2003 at 09:51:08AM -0700, Mike Batchelor wrote:
> > --On Wednesday, September 24, 2003 1:18 PM -0500 Justin Shore
> > <listuser@numbnuts.net> wrote:
> > >On Wed, 24 Sep 2003, Joel Perez wrote:
> > >
> > >>So back to my ACL's I go!
> > >
> > >This is one of the most likely things to happen. DNS RBLs are effective.
> > > Otherwise spammers wouldn't be targeting them for abuse.
> >
> > What evidence is there that spammers are the ones doing the DDoS?
>
> There is likely some conjecture here, but aside from the DNS RBLs
> that cause collateral damage (ie: blacklisting large chunks
> of address space to cause behaviour change) who has something to gain
> from these dnsbl's going down?
Isn't that collateral damage issue enough to have angered hundreds of ISPs
& end users to the point of not necessarily organizing a DDoS, but ignoring
it? I think it is far _more_ likely that the DDoS came from the innocent
victims fighting back rather than the spammers.
Dan.
