[Pdns-users] ddos
Mark Scholten
mark at streamservice.nl
Sat Apr 13 09:06:30 UTC 2013
> From: pdns-users-bounces at mailman.powerdns.com
[mailto:pdns-users-bounces at mailman.powerdns.com] On Behalf Of Emiel van >
Berlo
> Sent: 13 April, 2013 0:50
> To: pdns-users
> Subject: [Pdns-users] ddos
>
> Hi Everybody,
>
> Just to be sure, is powerdns safe for the recent ddos attacks in the
netherlands which used some dns malfunction?
>
> Regards,
>
> Emiel.
Hello Emiel,
All name server software (including PowerDNS) could be used for it as long
as an IP can request DNS packets from it. Some attackers are smart and start
by gathering a list with domains with a big zone in it on a name server and
requesting them.
The only option to prevent it is by blocking ALL traffic on port 53 UDP +
TCP (valid for all name servers running on the default DNS port 53).
Kind regards,
Mark Scholten
More information about the Pdns-users
mailing list