[99540] in North American Network Operators' Group
DDoS Question
daemon@ATHENA.MIT.EDU (Martin Hannigan)
Thu Sep 27 19:38:58 2007
Date: Thu, 27 Sep 2007 19:31:59 -0400
From: "Martin Hannigan" <hannigan@gmail.com>
To: nanog@merit.edu
Errors-To: owner-nanog@merit.edu
Folks,
I'm receiving about 25K spams per minute with this subject:
Subject: "Looking for Sex Tonight? Curtis Blackman"
They randomize the name on the subject line. Is this any particular
virus/malware/zombie signature and any suggestion on how to defend
against it besides what I'm already doing (which is all of the
obvious, rbls, spam appliances, hot cocoa, etc.)?
This happened right around the time I started securing the name server
infrastructure with BIND upgrades and recursor/authoritative NS
splitting. :-)
Best,
Marty
