On 29/11/2019 19:34, Tony Finch wrote: > Attackers can get a small amplification from SYN/ACK retries, and this is > being used in the wild. > > https://www.darkreading.com/attacks-breaches/new-ddos-attacks-leverage-tcp-amplification-/d/d-id/1336339
This isn't small. It'd be good to know _what_ is so broken: "many devices on the Internet can be manipulated to retransmit more than 5,000 SYN-ACK packets in 60 seconds" -- Cheers, Jeremy _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations
