Skip to Content.
Sympa Menu

discuss - Re: [opennic-discuss] DoS amp attack today

discuss AT

Subject: Discuss mailing list

List archive

Re: [opennic-discuss] DoS amp attack today

Chronological Thread 
  • From: Stefan Sabolowitsch <Stefan.Sabolowitsch AT>
  • To: "discuss AT" <discuss AT>
  • Subject: Re: [opennic-discuss] DoS amp attack today
  • Date: Tue, 16 Apr 2013 06:53:15 +0000
  • Accept-language: de-DE, en-US
  • Domainkey-signature: a=rsa-sha1; s=feltengroup_com;; c=simple; q=dns; h=from:message-id; b=lbCbtmbV7j8w5FiFerGutvXBrrA32v8PA6CH/wwNknMNmxqywFsAsTjMBOdO F7zGmFX4dVJQxgzi3ajnhWB1MhykrZIPfgTR70UhqFiGBgVralT/tmu/2 HCjT2F5NmYPWZ1jJv9tUIjiwwpvEHlOOHY0RBGgXAyJmDnU9UIvUN0=;
  • Vbr-info:; mc=all;;

Hi guys.
Why do you make your life not something easier?
rate-limit and anti-spoof are OK and important, but what really helps is
DNS dampening.

It will be as a plugin in the upcoming release of Bind v10.

It's really works, look here "5.1k Dampening" requests per second

should someone need help, just ask me maybe i can help here.


Am 16.04.13 07:02 schrieb "Tim Groeneveld" unter <tim AT>:

>----- Original Message -----
>> ----- Original Message -----
>> > Rate-limiting is the best first-step in this game. Even if you
>> > can't
>> > prevent your server from being used in an attack, you can at least
>> > greatly limit the actual damage being done to yourself and the
>> > intended target. I would highly recommend that ALL public DNS
>> > servers implement some manner of rate limiting.
>> This is correct.
>Also, of note, there is a patch for BIND 9 rate limiting,
>which can be found here
>You are a member of the OpenNIC Discuss list.
>You may unsubscribe by emailing
>discuss-unsubscribe AT

Archive powered by MHonArc 2.6.19.

Top of Page