[79790] in North American Network Operators' Group
Re: Six PCs caused BigPond problems
daemon@ATHENA.MIT.EDU (Patrick W Gilmore)
Fri Apr 15 01:44:46 2005
In-Reply-To: <Pine.GSO.4.58.0504150137160.5676@clifden.donelan.com>
Cc: Patrick W Gilmore <patrick@ianai.net>
From: Patrick W Gilmore <patrick@ianai.net>
Date: Fri, 15 Apr 2005 01:44:19 -0400
To: nanog@merit.edu
Errors-To: owner-nanog@merit.edu
On Apr 15, 2005, at 1:38 AM, Sean Donelan wrote:
> On Fri, 15 Apr 2005, Patrick W Gilmore wrote:
>> Well configured laptops will not put that much pressure on the roots.
>> A single misconfigured / broken recursive name server puts a lot more
>> pressure on the roots than lots of well-configured laptops.
>>
>> I guess one could argue that the chance of misconfiguration go up as
>> the number of systems goes up.
>
> http://www.zdnet.com.au/news/security/0,2000061744,39188319,00.htm
>
> Disconnecting six compromised personal computers on Tuesday evening
> eased
> the difficulties caused by bogus requests which clogged BigPond's
> domain
> name servers (DNS), slowing customer e-mail and Web site access,
> Telstra
> said.
Precisely my point. The problem is not number of well behaved systems,
but the misbehaving ones.
Again, you could argue that the quantity / chance of misconfiguration
goes up with the quantity of systems being configured, but the end
result still depends a great deal more on how many are misbehaving than
how many there are in total.
--
TTFN,
patrick
