--- Begin Message ---
Thank you for trying to help out folks!
> On 7 Oct 2021, at 16:56, Viktor Dukhovni <ietf-d...@dukhovni.org> wrote:
>
> I wonder whether this is an attempt to collect the NSEC3 chain for an
> off-line dictionary attack? 12 character random names are long enough
> to sample the space very well, though shorter strings would also do.
That sounds possible, but doesn’t explain the _dmarc/default labels, right?
@puneet
Would that be worth further exploring on your side?
At some point, we received 16264 qps of those type of queries at one site.
—
Moritz
signature.asc
Description: Message signed with OpenPGP
--- End Message ---
_______________________________________________
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
