On 07/04/13 10:58, Jake Anderson wrote: > Presumably the requests are generally coming from a limited subset of > addresses. > > That's what I do for the email spammers.
We are not talking about e-mail spam. If you had been paying attention in the last couple of weeks, you would have known that the recent DNS attacks used spoofed source IPs. While the attack target is put in the source IP field, you've still got most of the IPv4 space consisting of potential attack targets. If only all ISPs implemented strict egress filtering. But we live in the real world here... -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
