From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 3AEE2138010 for ; Thu, 28 Mar 2013 16:55:35 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 7FD28E09D0; Thu, 28 Mar 2013 16:55:27 +0000 (UTC) Received: from mail-ea0-f178.google.com (mail-ea0-f178.google.com [209.85.215.178]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id E0BDDE09A7 for ; Thu, 28 Mar 2013 16:55:25 +0000 (UTC) Received: by mail-ea0-f178.google.com with SMTP id o10so930001eaj.37 for ; Thu, 28 Mar 2013 09:55:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=lmqS8QGx5maQLdoEBr2QcdE3MtIlnp+sJnOhGfSimBU=; b=EiCHYV+gUuWyafsdc7RzD1LysAJF/4PQHsHhq8PF3CZYYZPjr0eYKWZ4guzwsEF9mA RvTXWW9YU2eDAbw3pPXBsFPT/WpkgwMuwKOQnMKz5hpST1ipVC5n6WUYBBpPHZUzTWM3 vqpxSD+OK7T6QDcosennSrZPHIsi1ktU7R3UFbf8WBV3ubAGIfnGbxpjjfLx6EvzwCmK uflLhF5YKa1WooZFsn7g2db/5XK/842jZUGyzcyRcqSu30dEskieKK62lnEAfekvmJAO bDsiajm2crD29yj4fDFB69cT787y2DuiHUNCO9cNF+XrMksbWI1yf3RvQmxzqytFe8JR uvVw== X-Received: by 10.14.215.193 with SMTP id e41mr68883536eep.32.1364489724531; Thu, 28 Mar 2013 09:55:24 -0700 (PDT) Received: from [10.0.0.11] ([88.151.75.134]) by mx.google.com with ESMTPS id s47sm27564004eeg.8.2013.03.28.09.55.23 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 28 Mar 2013 09:55:23 -0700 (PDT) Message-ID: <515475A6.4030908@gmail.com> Date: Thu, 28 Mar 2013 17:53:58 +0100 From: Jarry User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130307 Thunderbird/17.0.4 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] How to prevent a dns amplification attack References: <51540497.5020008@smash-net.org> In-Reply-To: <51540497.5020008@smash-net.org> Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 8bit X-Archives-Salt: 790d9e13-5ccc-43be-99bd-01c36a539da3 X-Archives-Hash: 2c256c1689fb3a1285d2c2244912219f On 28-Mar-13 9:51, Norman Rieß wrote: > Hello, > > i am using pdns recursor to provide a dns server which should be usable > for everybody.The problem is, that the server seems to be used in dns > amplification attacks. > I googled around on how to prevent this but did not really find > something usefull. > > Does anyone got an idea about this? Try to set-up connection rate limiting using iptables... Jarry -- _______________________________________________________________ This mailbox accepts e-mails only from selected mailing-lists! Everything else is considered to be spam and therefore deleted.