DDoS Question

Ken Simpson ksimpson at mailchannels.com
Thu Sep 27 23:49:47 UTC 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> They randomize the name on the subject line. Is this any particular
> virus/malware/zombie signature and any suggestion on how to defend
> against it besides what I'm already doing (which is all of the
> obvious, rbls, spam appliances, hot cocoa, etc.)?
> 
> This happened right around the time I started securing the name server
> infrastructure with BIND upgrades and recursor/authoritative NS
> splitting. :-)

RBLs are only effective against perhaps 50% of spam traffic, because
so much of it comes from never-seen-before zombies. What appliances
are you running? You might want to look at some kind of edge email
traffic shaping layer.

Regards,
Ken

- -- 
Ken Simpson
CEO, MailChannels

Fax: +1 604 677 6320
Web: http://mailchannels.com
MailChannels - Reliable Email Delivery (tm)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFG/EGb2YHPr/ypq5QRAuKNAKCYqf7uVoJmSAdKSSFH1NOTsLsZ6gCgk1Id
7+dI9UOemZtgqAI5pM+LwY4=
=V0fG
-----END PGP SIGNATURE-----



More information about the NANOG mailing list