--- Begin Message ---Thank you for trying to help out folks! > On 7 Oct 2021, at 16:56, Viktor Dukhovni <ietf-d...@dukhovni.org> wrote: > > I wonder whether this is an attempt to collect the NSEC3 chain for an > off-line dictionary attack? 12 character random names are long enough > to sample the space very well, though shorter strings would also do.That sounds possible, but doesn’t explain the _dmarc/default labels, right? @puneet Would that be worth further exploring on your side? At some point, we received 16264 qps of those type of queries at one site. — Moritzsignature.asc
Description: Message signed with OpenPGP
--- End Message ---
_______________________________________________ dns-operations mailing list dns-operations@lists.dns-oarc.net https://lists.dns-oarc.net/mailman/listinfo/dns-operations