loads of Query denied... is it an attack or a misconfiguration ?

Thomas Manson dev.mansonthomas at gmail.com
Wed Feb 11 09:02:04 UTC 2009


> > I'll temporray block the ip on my firewall
> Very bad idea, since it is forged. You do exactly what the attacker
> wanted you to do.
> The proper thing to do is:
> https://www.dns-oarc.net/oarc/articles/upward-referrals-considered-harmful

this is kind of response I expect : an answer of someone who know the
subject to a person who doesn't...
In this case, I could do nothing (and let the attack be done) or, doing
things wrong that amplify the attack.
Is it something everyone would want? If so, just tell me, I'll setup DoS
attack myself, if it's in the general interest !

 >Please go read the list achives.

this encourage to do nothing : I've a working system (my domain name are
resolved accross the internet) why care more ?
and then let the dns system get attacked... great...

On Wed, Feb 11, 2009 at 08:59, Stephane Bortzmeyer <bortzmeyer at nic.fr>wrote:

> On Wed, Feb 11, 2009 at 01:21:35AM +0100,
>  Thomas Manson <dev.mansonthomas at gmail.com> wrote
>  a message of 88 lines which said:
> > I believed I was on bind mailing list, a mailing list is where you
> > usually get some help... isn't it ?
> You're right, it's a shame. Ask immediately for a refund, both for
> your registration to the mailing list and for BIND itself.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20090211/e4ba0a42/attachment.html>

More information about the bind-users mailing list