|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: DNS cache poisoning attacks -- are they real?
* Joe Maimon: > Slightly OT to parent thread...on the subject of open dns resolvers. > > Common best practices seem to suggest that doing so is a bad thing. There was some malware which contained hard-coded IP addresses of a few open DNS resolvers (probably in an attempt to escape from DNS-based walled gardens). If one of your DNS resolvers was among them, I'm sure you'd closed it to the general public, too -- and made sure that your others were closed as well, just in case.
|