Full Disclosure mailing list archives

Re: New DDoS attack vector

From: minor float <minor.float () gmail com>
Date: Fri, 20 May 2011 14:10:42 +0200

not really, because we have seen that they've used more than one smtp
server for this.

minor

On 20 May 2011 13:29, Balder <balder.theglorious () googlemail com> wrote:

As far as i can tell you are going through a load of trouble to to
create a mail server that will make  a bunch of DNS request.
 * how is this a DDoS if it is just ne server (the mail server
producing all the traffic)
 * Why go to all this trouble when you could just do something like
the following (replacing dig with something faster)
   - while true ; do dig $(</dev/urandom tr -dc A-Za-z0-9 | head -c
10 ).example.com MX  ; done

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

New DDoS attack vector minor float (May 19)
- Re: New DDoS attack vector joris dedieu (May 19)
- Re: New DDoS attack vector Dobbins, Roland (May 19)
  - Re: New DDoS attack vector Kristian Erik Hermansen (May 20)
    - Re: New DDoS attack vector Balder (May 20)
    - Re: New DDoS attack vector Kristian Erik Hermansen (May 20)
    - Re: New DDoS attack vector Balder (May 20)
    - Re: New DDoS attack vector minor float (May 20)
    - Re: New DDoS attack vector Balder (May 20)
    - Message not available
    - Re: New DDoS attack vector ascii (May 20)
    - Re: New DDoS attack vector minor float (May 20)
    - Re: New DDoS attack vector Dobbins, Roland (May 20)
    - Message not available
    - Re: New DDoS attack vector ascii (May 20)