DNS Amplification Attacks... and a trivial proposal

Ronald F. Guilmette rfg at tristatelogic.com
Fri Jun 14 03:45:38 UTC 2013

In message <20130614032434.72450.qmail at joyce.lan>, 
"John Levine" <johnl at iecc.com> wrote:

>>So, may I infer that rather than being put off until the end of the
>>century, which seemed to be the previous implementation timeline,
>>pervasive implementation of BCP 38 may now be expected at around the
>>time that 32-bit UNIX clocks are anticipated to wrap-around to negative?
>Perhaps, but I think that's still a lot sooner than a yet-to-be-designed
>hack to DNS servers will be widely used.

This is a point upon which reasonable men may reasonably disagree.

(I am looking at BCP 38.  It is dated May, 2000.  This does not fill
me with sanguine hopefulness regarding imminent implementation, sufficient
to make any real difference in the magnitude of the problem.)


More information about the bind-users mailing list