Re: [gentoo-user] How to prevent a dns amplification attack

[Kevin Chadwick]

> listened to the dangers and even now simply redesigned DNSSEC.

Or they could fudge it by making every request requiring padding larger
than the response. Bandwidth would increase astronomically but amp
attacks would have to find other avenues.