[87935] in North American Network Operators' Group
Re: DOS attack against DNS?
daemon@ATHENA.MIT.EDU (Paul Vixie)
Sun Jan 15 12:28:09 2006
To: nanog@merit.edu
From: Paul Vixie <vixie@vix.com>
Date: 15 Jan 2006 17:27:40 +0000
In-Reply-To: <43C9EF72.50803@garlic.com>
Errors-To: owner-nanog@merit.edu
> client xx.xx.xx.xx#6704: query: z.tn.co.za ANY ANY +E
class "ANY" has no purpose in the real world, not even for debugging. if
you see it in a query, you can assume malicious intent. if you hear it in
a query, you can safely ignore that query, or at best, map it to class "IN".
--
Paul Vixie
