Incidentally,
On 13-Mar-2007, at 14:00, Dean Anderson wrote:
By contrast, searching for recursors is (unless you've discovered some
interesting new way of finding them without scanning---I'm very
interested to hear about that) some that can be detected, so that
the abusers can be identified.
1. Host some popular content somewhere which will be resolved (most
of the time) using a DNS name whose authority servers you control.
2. Turn on query logging on the authority servers.
3. Wait.
4. Extract list of recursive servers from log.
That finds you a long list of recursive servers. You can then either
refine the list by probing individual servers to see whether they
will perform recursive queries for you, or you can assume that enough
of them will be open that the duds really don't matter.
The more popular the content, the less time will elapse in step 3.
Joe
_______________________________________________
DNSOP mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dnsop
