On Tue, Oct 22, 2013 at 10:48:52AM +0100, Tony Finch <d...@dotat.at> wrote a message of 43 lines which said:
> Apart from avoiding fragments, are there other ways to mitigate this > attack? If I remember correctly, in her paper, Shulman mentioned possible rules at the registry: limiting the maximum number of name servers per domain, the length of the name servers' names, etc. This is to make more difficult to force the registry's name servers to send big answers. _______________________________________________ dns-operations mailing list dns-operations@lists.dns-oarc.net https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
