John McMonagle wrote: > Tom Eastep wrote: >> John McMonagle wrote: >> >>> Tom >>> >>> Now that you have a system to fix it looks like there is another method >>> in the works :-( >>> http://www.scmagazineus.com/New-style-of-DNS-amplification-can-yield-powerful-DDoS-attacks/article/126839/?DCMP=EMC-SCUS_Newswire >>> >>> >> I didn't see anything new in that article. Did I miss something? >> >> -Tom >> > New quiry now "." instead of "./IN/NS". >
I sure don't get that out of the article: “This new tactic uses a very short query, asking simply the name servers for the ‘.' domain [a single dot],” he wrote Monday in an analysis of DNS amplification. “This domain is the root server domain, so the answer is large [or long]. A list of all the root domain name servers is sent back in response." That's exactly what we've been dealing with. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
