Stopping DNS-based DDoS attacks in their tracks
Guest Post: Researchers propose a mechanism for DNS servers to independently determine a client’s preferred protocol.
Tag: DDoS
DNS vulnerability, configuration errors can cause DDoS
Guest Post: An overlooked DNS vulnerability that, when combined with a configuration error, is leading to massive DNS traffic surges.
Event Wrap: KHNOG 3
APNIC staff presented on IPv6, and DDoS prevention at KHNOG 3, held online on 4 December 2021.
ICARUS: Beware of flying satellites
Guest Post: How resilient are LEO satellite networks to DDoS attacks?
Evaluation of anti-DDoS features in full-service resolvers
Guest Post: Simulating a DDoS attack, Japanese researchers tested a full-service resolver configured with both fetch-limit and serve-stale enabled.
Weaponizing middleboxes for TCP reflected amplification
Guest Post: Researchers show how middleboxes and censorship infrastructure can be abused to launch reflected DoS amplification attacks over TCP.
Another DNS OARC meeting
Geoff shares his thoughts on what was being discussed the recent OARConline 35a.
New DDoS classifiers for the DDoS Clearing House
Guest Post: Capturing DDoS characteristics with the Dissector.
Spoofing packets: What is it, and why do people do it?
Spoofed packets allow senders to hide their source address. How do they work and why do they do it?
How to detect IoT devices in a network
Guest Post: How can we identify and locate IoT devices in networks to mitigate exposure to large-scale attacks?