[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [ISN] DDoS Attacks: Variant Foreseen in 2006
Forwarded from: Dave Dittrich <dittrich (at) u.washington.edu>
On 10/30/12 11:51 PM, InfoSec News wrote:
Meanwhile, one security vendor says it saw elements of these current
DDoS attacks six years ago.
In April 2006, VeriSign identified the then-new type of DDoS attack
known as a domain-naming-system reflector attack. A DNS reflector
attack overwhelms a site's Web server with spoofed DNS responses. The
vendor even published a white paper about the variant, based on
traffic patterns it observed at the time.
Seriously VeriSign? You discovered this in 2006? And you are crowing
about it six years later as a warning of threats to come? You are 11
years too late.
There has been a description of the first DNS reflection attacks on my
DDoS web page since 2001. My colleagues and I wrote about the
Register.com reflected DNS attack in our book on DDoS, published in
2004. Sometime many years ago, when someone else "discovered" DNS
reflection attacks, I added more references and added a "What's new in
DDoS" subsection that reads, "Nothing, really. (Some people are just
late to the party. ;)"
Sorry, but you really need to do your research more
dittrich (at) apl.washington.edu
PGP key: http://staff.washington.edu/dittrich/pgpkey.txt
Fingerprint: 097B 4DCB BF16 E1D8 A06C 7512 A751 C80A D15E E079
Visit the InfoSec News Security Bookstore
Best Selling Security Books and More!