Doug Barton wrote:
On 02/18/2014 07:59 PM, Joe Maimon wrote:
Are you running open resolvers?
Yes
If so, please stop doing that,
No
it's widely known to be a bad idea for over a decade now,
At this point, doing anything on the internet is a bad idea.
and you are providing the bad guys a tool to use for DDOS attacks.
Get back to me when the same cant be done with auth servers.
If it's something else, please speak up. Regardless of the goal of this particular issue, the way to solve the root problem is to prevent the spoofed packets from getting to your servers in the first place. Doug
