Date: Tue, 17 Jan 2006 00:01:38 -0500 (EST) From: "Mike Silbersack" <silby@silby.com> To: "Steve Suhre" <cheesiest@nano.net> Cc: freebsd-hackers@freebsd.org Subject: Re: Named requests filling up T1 Message-ID: <44314.63.147.253.154.1137474098.squirrel@webmail7.pair.com> In-Reply-To: <43CC65BC.9040005@nano.net> References: <43CC59E7.6080505@nano.net> <015901c61b15$898648a0$1200a8c0@gsicomp.on.ca> <43CC65BC.9040005@nano.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> Thanks Matt, > > The answer to both is no. The domain doesn't resolve either > (v.tn.co.za). It looks like the source IP changes too...sigh.... I tried > a whois on the source IP and it was not found, so it may be spoofed? Or > someone has a very messed up server... There was a thread on bugtraq about this, you're either being attacked or are being used to attack someone else. Reconfigure BIND so that it ignores recursive queries originating from outside your network - at least that will save your outbound bandwidth. Mike "Silby" Silbersack
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44314.63.147.253.154.1137474098.squirrel>