[89507] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: DNS Amplification Attacks

daemon@ATHENA.MIT.EDU (Michael.Dillon@btradianz.com)
Thu Mar 23 04:32:51 2006

In-Reply-To: <87odzyz30q.fsf@mid.deneb.enyo.de>
To: nanog@merit.edu
From: Michael.Dillon@btradianz.com
Date: Thu, 23 Mar 2006 09:35:34 +0000
Errors-To: owner-nanog@merit.edu


> > DNS looking glasses, in much the same way that we use web-form based
> > BGP or traceroute looking glasses today.
> 
> Open resolvers are far better then looking glasses to assess the state
> of DNS, and we are campaigning against them.  You can't have it both
> ways. 8-(

What is the definition of "DNS Looking Glass"?
If it is a PERL CGI script then I would agree with you.
If it is a DNS proxy that applies rate limiting
and damping then I disagree with you. 

--Michael Dillon


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[89507] in North American Network Operators' Group

Re: DNS Amplification Attacks

daemon@ATHENA.MIT.EDU (Michael.Dillon@btradianz.com)Thu Mar 23 04:32:51 2006

daemon@ATHENA.MIT.EDU (Michael.Dillon@btradianz.com)
Thu Mar 23 04:32:51 2006