Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: New DDoS attack vector
From: minor float <minor.float () gmail com>
Date: Fri, 20 May 2011 14:10:42 +0200

not really, because we have seen that they've used more than one smtp
server for this.

minor

On 20 May 2011 13:29, Balder <balder.theglorious () googlemail com> wrote:
As far as i can tell you are going through a load of trouble to to
create a mail server that will make  a bunch of DNS request.
 * how is this a DDoS if it is just ne server (the mail server
producing all the traffic)
 * Why go to all this trouble when you could just do something like
the following (replacing dig with something faster)
   - while true ; do dig $(</dev/urandom tr -dc A-Za-z0-9 | head -c
10 ).example.com MX  ; done

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]