nanog mailing list archives
Re: DDos syn attack
From: Randy Bush <randy () psg com>
Date: Mon, 30 Dec 2002 08:09:17 -0800
This is also a very viable solution, provided the customer has provisioned for this with lower ttls on their DNS records, which ALOT of people (thankfully) don't do
actually, a bunch of research now shows that low ttls on A RRs (that are not the A RRs of NS RRs) has little effect. in the case a dns lookup is being done in a ddos, of course one would prefer if the attacking zombies cached the lookup <grin>. randy
Current thread:
- DDos syn attack Mike Hyde (Dec 30)
- Re: DDos syn attack Christopher L. Morrow (Dec 30)
- Re: DDos syn attack Randy Bush (Dec 30)
- Re: DDos syn attack Christopher L. Morrow (Dec 30)
- Re: DDos syn attack Andrew Dorsett (Dec 30)
- Re: DDos syn attack Randy Bush (Dec 30)
- Re: DDos syn attack Christopher L. Morrow (Dec 30)