unapproved update from .....
Kevin Darcy
kcd at daimlerchrysler.com
Wed Dec 8 21:13:58 UTC 1999
Barry Margolin wrote:
> In article <384D87AA.1EB6337C at daimlerchrysler.com>,
> Kevin Darcy <kcd at daimlerchrysler.com> wrote:
> >I suppose if one wanted to be nasty about it, one could blackhole the IP
> >address.
>
> Blackhole your own addresses? That's what I really call cutting off your
> nose to spite your face.
I've had to resort to such measures when some misconfigured system starts blasting
a million queries a day at one of my nameservers, and I have no idea whose box it
is or who to contact. Cuts the traffic in half (no answers) and is likely to bring
the owner of the box out of the woodwork to complain about no DNS service. If
no-one claims the box after a while and I'm still getting scads of queries, then
I have our Telecom staff disable their hub port. Such guerilla tactics are
sometimes necessary in very large organizations...
I haven't blackholed any chatty WIN2K boxes. Yet. :-)
- Kevin
More information about the bind-users
mailing list