On Thu, 7 May 2020 14:48:25 +0200 Anand Buddhdev <[email protected]> wrote:
> You are wrong. DNS amplification attacks cannot be done over TCP. You missed the point. If authoritative answers over tcp with any data, resolver dns can answer to victim with udp. So at authoritative it is important not to answer to any. -- Tuomo Soini <[email protected]> Foobar Linux services +358 40 5240030 Foobar Oy <https://foobar.fi/> _______________________________________________ nsd-users mailing list [email protected] https://lists.nlnetlabs.nl/mailman/listinfo/nsd-users
