Slashdot Mirror

← Back to Stories (view on slashdot.org)

DDoS Attacks Via DNS Recursion

Posted by ryuzaki0 on from the to-understand-recursion-you-must-understand-recursion dept.

JehCt writes "Associated Press is running a story about how the recursion feature of open DNS servers can be used to launch massive distributed denial of service (DDoS) attacks: 'First detected late last year, the new attacks direct such massive amounts of spurious data against victim computers that even flagship technology companies could not cope.' A thread at WebmasterWorld explains, 'To make a long story short, having a DNS server that allows recursion for the Internet is like running an open SMTP relay.'"

1 of 192 comments (clear)

  1. Re:djbdns by Perl-Pusher · · Score: 3, Interesting

    I have 3 dns servers are NAT'd on the private lan and allow recursion, the public one outside doesn't. I'm not a DNS expert but I haven't had any issues from users or attacks.