On Dec 19, 2012, at 4:37 AM, Vernon Schryver wrote: > Besides, DoS attacks on DNS servers themselves (as opposed to using DNS > servers to attack others) are best handled outside in smart (e.g. sane state > table management) application firewalls.
This seem to be an issue of semantics - I certainly agree that there are better solutions for dealing with DNS DDoS attacks than every-server-for-itself. [Full disclosure: I work for a vendor of such solutions.] ----------------------------------------------------------------------- Roland Dobbins <[email protected]> // <http://www.arbornetworks.com> Luck is the residue of opportunity and design. -- John Milton _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
