DDoS Attacks Via DNS Recursion 192
JehCt writes "Associated Press is running a story about how the recursion feature of open DNS servers can be used to launch massive distributed denial of service (DDoS) attacks: 'First detected late last year, the new attacks direct such massive amounts of spurious data against victim computers that even flagship technology companies could not cope.' A thread at WebmasterWorld explains, 'To make a long story short, having a DNS server that allows recursion for the Internet is like running an open SMTP relay.'"
Recursion == recursion == recursion == ... (Score:3, Funny)
See recursion [catb.org]. See also tail recursion [catb.org].
From the Jargon File [catb.org].
MOD REPLY TO PARENT UP (Score:3, Funny)
The real risk is perhaps The Final Virus [catb.org].
Re:I must resist (Score:3, Funny)
There is a defense (Score:3, Funny)
/.ers will know that only the mighty foot of Chuck Norris [chucknorrisfacts.com] is powerful enough to kick back such a massive DDoS attack. There is a problem though: since there is only 1 of him, Chuck can't defend more than one site at a time. And ofcourse his ourly rates are a bit steep, too.
Vary your mileage may.Re:I must resist (Score:3, Funny)
~S
Recursion considered harmful (Score:4, Funny)
Re:djbdns (Score:5, Funny)
History repeats itself (Score:1, Funny)
Digital Research cloned it and improved it in the late 1980s (early '90s?), making a program called DR-DOS that pundits called "a better DOS than DOS."
Flash forward to Yahoo News: [yahoo.com]
"Experts call the attack technique a 'distributed reflector denial of service,'" says the site.
So once again, DoS has been supplanted by DRDoS.
Re:slashdot DNS is OPEN! (Score:3, Funny)
Or maybe they read the actual article before posting it?
Sorry, just my little joke.