That's being done with automated scripts. Some systems are not
configured properly to do correct load balancing and I suspect on such
systems those crackers would get through. They have malware to install
on your system most likely.
On Sun, 10 Jan 2016, Glenn English wrote:
Date: Sun, 10 J
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, Jan 10, 2016 at 01:45:19PM -0700, Glenn English wrote:
>
> > On Jan 10, 2016, at 12:48 PM, wrote:
> >
[DNS amplification?]
> An interesting thought. But they don't get too far with the rate
> limiter in the packet filter -- I don't send a
> On Jan 10, 2016, at 12:48 PM, wrote:
>
> Perhaps some miscreants are trying to use/using your DNS server for
> DNS amplification attacks [1] (they use open DNS servers to multiply
> their DDOS (distributed denial of service) attack force by spoofing
> the sender's address in their request (th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, Jan 10, 2016 at 12:14:42PM -0700, Glenn English wrote:
> I'm a self-taught admin (aka mild newbie), and I don't understand why people
> would hit my DNS servers thousands of times.
>
> I've got a limiter in iptables ('recent' module) that blo
4 matches
Mail list logo
