nanog mailing list archives
Re: DNS Amplification Attacks
From: Gadi Evron <ge () linuxbox org>
Date: Mon, 20 Mar 2006 23:30:46 +0200
Geo. wrote:
Recursion the way it is set now with most DNS implementations, is the problem being exploited by spoofing. It is true spoofing is bad for our health, but that does not mean we should ignore what actually gets exploited, which is recursive name servers open to the world. Fixing the one does not mean we shouldn't fix the other.But fixing recursion also fixes the internet (fixes as in how you fix a dog) in that he who controls the DNS controls the net. Fixing DNS is going to hand over strict control to governments because now they can prevent you from resolving anything they don't want you to resolve.
Where did that come from? I respect you but please, let's have a technical discussion. This is important enough for us all to avoid the flame-wars for now. Don't move this thread to politics or lunacies.
Current thread:
- DNS Amplification Attacks Gadi Evron (Mar 17)
- Re: DNS Amplification Attacks ennova2005-nanog (Mar 17)
- Re: DNS Amplification Attacks Sean Donelan (Mar 19)
- Re: DNS Amplification Attacks Gadi Evron (Mar 20)
- RE: DNS Amplification Attacks Geo. (Mar 20)
- Re: DNS Amplification Attacks Gadi Evron (Mar 20)
- Re: DNS Amplification Attacks Joseph S D Yao (Mar 20)
- Re: DNS Amplification Attacks Peter Dambier (Mar 20)
- Re: DNS Amplification Attacks Todd Vierling (Mar 20)
- Re: DNS Amplification Attacks Florian Weimer (Mar 22)
- Re: DNS Amplification Attacks Peter Dambier (Mar 22)
- Re: DNS Amplification Attacks Florian Weimer (Mar 22)
- Re: DNS Amplification Attacks Joseph S D Yao (Mar 22)
- Re: DNS Amplification Attacks Peter Dambier (Mar 23)
- Re: DNS Amplification Attacks Joseph S D Yao (Mar 25)
- Re: DNS Amplification Attacks Sean Donelan (Mar 19)
- Re: DNS Amplification Attacks ennova2005-nanog (Mar 17)
- Re: DNS Amplification Attacks Andy Davidson (Mar 20)