Monday, March 27, 2006

DNS attacks

This kind of attack has been around for years but for some reason, DNS amplification attacks seems to be the attack de jour. The panicky types have recommended recommended all sorts of action to protect their networks but it has little effect because it doesn't change the fact that recursive DNS servers exist and will probably continue to exist. Also, if DNS amplification attacks are ever fixed, there's always some other protocol available that will return larger packets in response to a spoofed input.