From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id DA3D7138010 for ; Sun, 31 Mar 2013 19:08:07 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id E6D9AE0E60; Sun, 31 Mar 2013 19:07:59 +0000 (UTC) Received: from smash-net.org (smash-net.org [176.9.155.157]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 51640E0E47 for ; Sun, 31 Mar 2013 19:07:58 +0000 (UTC) Received: from smash-net.org (localhost [127.0.0.1]) by smash-net.org (Postfix) with ESMTP id 5E69A27A0050 for ; Sun, 31 Mar 2013 21:07:55 +0200 (CEST) Received: by smash-net.org (Postfix, from userid 65534) id 2279727A020C; Sun, 31 Mar 2013 21:07:54 +0200 (CEST) X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on heimdall X-Spam-Level: X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED autolearn=disabled version=3.3.2 Received: from [IPv6:2a01:198:523:0:221:86ff:fe61:bac2] (unknown [IPv6:2a01:198:523:0:221:86ff:fe61:bac2]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smash-net.org (Postfix) with ESMTPSA id 583FE27A0050 for ; Sun, 31 Mar 2013 21:07:50 +0200 (CEST) Message-ID: <51588985.3070105@smash-net.org> Date: Sun, 31 Mar 2013 21:07:49 +0200 From: =?ISO-8859-1?Q?Norman_Rie=DF?= User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130326 Thunderbird/17.0.4 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] How to prevent a dns amplification attack References: <51540497.5020008@smash-net.org> In-Reply-To: X-Enigmail-Version: 1.5.1 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-Virus-Scanned: ClamAV using ClamSMTP X-Archives-Salt: 973b8050-d6f9-4b63-8546-514f2218af82 X-Archives-Hash: efc0137624232d689f9e25d902d4e988 Am 31.03.2013 04:08, schrieb Paul Hartman: > On Thu, Mar 28, 2013 at 3:51 AM, Norman Rieß wrote: >> Hello, >> >> i am using pdns recursor to provide a dns server which should be usable >> for everybody.The problem is, that the server seems to be used in dns >> amplification attacks. >> I googled around on how to prevent this but did not really find >> something usefull. >> >> Does anyone got an idea about this? > > Coincidentally, yesterday US-CERT published a small article about DNS > amplification attacks and mitigation strategies: > > http://www.us-cert.gov/ncas/alerts/TA13-088A > Thanks a lot!