random dns queries with random sources

Joe Maimon jmaimon at ttec.com
Wed Feb 19 05:44:43 UTC 2014


Doug Barton wrote:
> On 02/18/2014 07:59 PM, Joe Maimon wrote:

> Are you running open resolvers?

Yes

> If so, please stop doing that,

No


> it's
> widely known to be a bad idea for over a decade now,

At this point, doing anything on the internet is a bad idea.


> and you are
> providing the bad guys a tool to use for DDOS attacks.

Get back to me when the same cant be done with auth servers.

>
> If it's something else, please speak up. Regardless of the goal of this
> particular issue, the way to solve the root problem is to prevent the
> spoofed packets from getting to your servers in the first place.
>
> Doug


>
>
>



More information about the NANOG mailing list