[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] DDos counter measures

To: Laurent LEVIER <llevier@argosnet.com>
Subject: Re: [Full-Disclosure] DDos counter measures
From: Gael Martinez <gael@magicnet.org>
Date: Thu, 14 Aug 2003 20:12:37 -0500

Try some other tests using no A record for windowsupdate.com in your local zone,
you will notice that the damages are even smaller doing that instead of localhost (127.0.0.1).

Gael


On Thu, Aug 14, 2003 at 08:04:54PM +0200, Laurent LEVIER wrote:
> All,
> 
> Since our IntraNet solves all its DNS queries through internal caches 
> (mandatory bottleneck), we created windowsupdate.com & 
> windowsupdate.microsoft.com zones in this bottleneck DNS. These are 
> resolving to 127.0.0.1 with DNS wildcards.
> 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] DDos counter measures
  - From: Charles Ballowe <hangman@steelballs.org>

References:
- RE: [Full-Disclosure] Windows Dcom Worm planned DDoS
  - From: Szappanos Gábor (VBuster) <gszappanos@virusbuster.hu>
- [Full-Disclosure] DDos counter measures
  - From: Laurent LEVIER <llevier@argosnet.com>

Prev by Date: Re: [Full-Disclosure] Microsoft urging users to buy Harware Firewalls
Next by Date: Re: [Full-Disclosure] east coast powergrid / SCADA [OT?]
Prev by thread: Re: [Full-Disclosure] DDos counter measures
Next by thread: Re: [Full-Disclosure] DDos counter measures
Index(es):
- Date
- Thread