On Tue, Mar 26, 2013 at 11:16 AM, Gary Buhrmaster <[email protected]> wrote:
> On Tue, Mar 26, 2013 at 5:28 PM, Paul Ferguson <[email protected]> wrote: > ... >> If you are hosting an Open DNS Recursive Resolver, or not doing some >> favor of BCP38 [3], please stop/start. :-) > > It would be nice to imagine that this will cause BCP38 to be widely > implemented, and for the Tier<n> providers to add language to their > contracts to enable them to stop routing those downstreams that do > not implement it (and/or require BCP38 of their downstreams). But > you will say I am a dreamer.... > > Gary Well, DNS Amplification attacks are not going away -- if anything, they are getting worse and more intense: http://blog.cloudflare.com/the-ddos-that-knocked-spamhaus-offline-and-ho - ferg -- "Fergie", a.k.a. Paul Ferguson fergdawgster(at)gmail.com _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
