Discuss mailing list

[Bersl <bersl2 AT bersl2.info>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/29/2013 06:43 PM, Julian DeMarchi wrote:
> 
> Thoughts, ideas?
> 
> --julian
> 

I'd like to think I myself am doing just fine with a mix of tiered
response rate-limiting (BIND RRL patches + Fail2Ban), a blacklist of
domains almost certainly existing for the purpose of DNS amplification
abuse, and occasional monitoring.

Another thing I don't know is how many users I actually have, which is
needed to know how scalable my solution is. I'd like to know that, but
I also have no desire to actually track legitimate users.

I've asked for feedback on two(?) previous occasions from the list by
anyone who actually uses my resolver (tx10/19.us), and I have received
none, so my only conclusion is that everyone who still uses my server
is fine enough with it. I've also (thankfully) never received any
feedback from my provider, FWIW. :)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJScWfUAAoJEKDJEQNczrCUjoAH/0q9Cni9DzqHv16V4ctYFLPP
1xo6HNC1FWfRIXEEZMNDguBekWXANx92N4DjkttwRXpd2yy3+VHwXvtBT2Oewflm
uk9hL2NGeT0Did3RQQdkMCqzvPIctjMrqopttKAgIz4TZnKdwzO3IcZLCH1e3ce8
iNZ74aBQR16dXXdoGSQTFUJC4sVW5FsdJCzl0XZcQegoLh9WKyyEM07z2Btydx3H
+TwKqqAS3pgS16/HdcguUFqN+MUE6CbBLHex97nA7bMq4UQp/8xo25d0yQr0DsGU
MyWQk/FqB7mUvHxFyoCaGsu4r0dkbxheBIFzlDXkE29rzwLZA1BuhQDGIW49g98=
=Se/r
-----END PGP SIGNATURE-----