- TalkBack 1 of 15:
- Next »
- Thread View
- Flat View
- Open relays (again)
-
This is just like open SMTP relays, only worse. Instead of just loads of spam from an identifiable host that can be blacklisted, now it is a DDoS attack.
Wait for the chorus of non-admins: "You can't turn off recursive queries-- we need them to bypass ____ (fill in blank)". They will bring up privacy, anonymity, and other dire consequences of operating DNS servers with the recommended configuration (not allowing ingress recursive queries).
Again, it's just like open SMTP relays. Chicken littles all over bemoaned the days when they could no longer send anonymous email after everyone shut down their wide open servers (how selfish-- "fix the spam problem, but don't do anything that will make me do any more work"). Guess what? The sky did not fall, open relays have been shut down or blacklisted, and you can still send mail anonymously (albeit using different techniques that don't damage the internet).
So to preemt the enevitable posts of how turning off recursive queries will destroy the cooperative nature of the internet-- get a clue! We can no longer function as if everyone is friendly. Responsible admins need to assume that hackers and crackers will exploit any and all attack vectors. To do otherwise is a disservice to their customers, to their employers (and shareholders), and yes-- the entire internet.
Running a well connected SMTP server is a serious responsibility. Do it right or let someone else. Now we know the same holds true for DNS servers.
Thus endeth the lesson. - Posted by: RestonTechAlec Posted on: 03/24/06 You are currently: a Guest | Members login | Terms of Use
Open relays (again)
RestonTechAlec | 03/24/06
|
 
not an admin
Tyrone~ | 03/24/06
|
|
Ever heard of a Smurf Attack? Geez....
bugmenotznet | 03/24/06
|
|
not exactly a Smurf Attack ...
LilBambi_z | 03/24/06
|
Not missing much...
bugmenotznet | 03/24/06
|
|
So what is the best way
zal@... | 03/24/06
|
|
Laughable
nsmarcum | 03/24/06
|
|
Hit that nail right on the head. (nt)
bugmenotznet | 03/24/06
|
|
Where's the problem here??
rocky1 | 03/24/06
|
|
Are you going to enforce that?
george_ou | 03/24/06
|
|
Enlighten us, O DNS swami
RestonTechAlec | 03/24/06
|
|
I'm a little late, but LOL...
Fasty | 04/19/06
|
|
Dirty Hackers
toodevastate | 03/24/06
|
|
Timing logic
rjhenn_z | 03/24/06
|
|
do I smell extortion here?
nethead_z | 03/28/06
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Get top-ranked Novell support for Red Hat at 50% less Novell A simplified IT environment isn't just less complex, it's more reliable. ... Download Now
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Reduce risk. Reduce complexity. Increase reliability.
-
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
- Learn more >>
- Learn more about tools to grow your business
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Save time with the UPS Business Essentials Guide
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Enterprise Applications
- Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
- New Online Dashboard
-
- Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline
-
