[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] New DDoS attack vector

To: Balder <balder.theglorious@xxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] New DDoS attack vector
From: minor float <minor.float@xxxxxxxxx>
Date: Fri, 20 May 2011 14:10:42 +0200

not really, because we have seen that they've used more than one smtp
server for this.

minor

On 20 May 2011 13:29, Balder <balder.theglorious@xxxxxxxxxxxxxx> wrote:
> As far as i can tell you are going through a load of trouble to to
> create a mail server that will make  a bunch of DNS request.
>  * how is this a DDoS if it is just ne server (the mail server
> producing all the traffic)
>  * Why go to all this trouble when you could just do something like
> the following (replacing dig with something faster)
>    - while true ; do dig $(</dev/urandom tr -dc A-Za-z0-9 | head -c
> 10 ).example.com MX  ; done
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] New DDoS attack vector
  - From: Balder

References:
- [Full-disclosure] New DDoS attack vector
  - From: minor float
- Re: [Full-disclosure] New DDoS attack vector
  - From: Dobbins, Roland
- Re: [Full-disclosure] New DDoS attack vector
  - From: Kristian Erik Hermansen
- Re: [Full-disclosure] New DDoS attack vector
  - From: Balder

Prev by Date: Re: [Full-disclosure] New DDoS attack vector
Next by Date: [Full-disclosure] [ MDVSA-2011:095 ] apr
Previous by thread: Re: [Full-disclosure] New DDoS attack vector
Next by thread: Re: [Full-disclosure] New DDoS attack vector
Index(es):
- Date
- Thread