Re: [dns-operations] [Ext] DNS Flag Day 2020 will become effective on 2020-10-01

On 16/09/2020 09:11, Mark Andrews wrote: > There are a number of issues. > Stupid firewalls that block PTB messages. Solution, fragment at network MTU. Let me rephrase that for you: "Solution, fragment at network MTU (a value that you cannot efficiently discover)." -- Cheers, Jeremy ___

Re: [dns-operations] root? we don't need no stinkin' root!

On 29/11/2019 19:34, Tony Finch wrote: > Attackers can get a small amplification from SYN/ACK retries, and this is > being used in the wild. > > https://www.darkreading.com/attacks-breaches/new-ddos-attacks-leverage-tcp-amplification-/d/d-id/1336339 This isn't small. It'd be good to know _what_