[RndTbl] DNS Amplification DoS
Sean Walberg
sean at ertw.com
Mon Sep 17 15:31:36 CDT 2012
On Mon, Sep 17, 2012 at 3:28 PM, Paul Sierks <psierks at sierkstech.net> wrote:
> Sorry for any confusion, of which I'm sure I'm about to add to. But this
> particular box doesn't have an internal network, just one interface on the
> internet. Also I think a lot of the problem in my case is the allowed IP
> addresses change on a regular basis, quite often.
Then I think we're back at Gille's original response -- don't do it! :)
There are many better public DNS servers out there, such as Google/s
8.8.8.8 and 8.8.4.4.
Failing that, mitigate the risk with an iptables filter to prevent your
host from being the source of the DDOS.
Sean
--
Sean Walberg <sean at ertw.com> http://ertw.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.muug.mb.ca/pipermail/roundtable/attachments/20120917/10197cb9/attachment.html>
More information about the Roundtable
mailing list