Tech News
By Steve Ragan Feb 7, 2007, 21:40 GMT
UltraDNS attack targeted G and L root servers (1st Update)
And Also
Latest Headlines in Tech
- 1. Troubleshooting browser plug-ins
- 2. Michael Jackson tops 2009 search terms
- 3. Access from any computer: NAS network storage for home users
- 4. Tech gifts for Christmas
- 5. Yahoo improves its search engine
Older Talkback
page: 1
There appears to be no evidence that UltraDNS servers were attacked.
There is evidence that at least 4 of the root servers were included in the attack. However, there seems to be no confirmation that UltraDNS servers (which handle .org domains) were involved, aside from some rumors in early DNS reports.
It seems that as the 2002 attacks occurred around February also. The attack was interesting as well as obviously a trial run as it was for the particpant(s) of the 2002. Does that infer a larger attack is imminent? Impossible to know for sure but unlikely. The attackers will have allot of data to analyze. I would also speculate on the likelihood the attack was effected by a government entity, say 50-50, just which one? USA, China?...the list goes on as well as nefarious political groups etc.
Most likely the attack was a recon effort to look at the technical ''posture as it relates to improved load balancing of the DNS ROOT servers. Was it effective from an attack standpoint? Yes. Could it get much worse? The answer is so obvious as to seem stark. Will it happen again? Count on it. The inheirent vulnerablity of the entire internet to function timely, or at all, is there for all to see. I believe the analogy 'The Emperor has no clothes' is apropos here.
Jeff Dahlgren
http://www.networkwarriors.com
Phoenix, Arizona USA
Is there any technical reason why the number of root servers can't be increased? It would seem that doubling the number of root servers from 13 to 26 would offer more resiliency.
Increasing the number of root servers would seem to be more redundant, however, this isn't possible due to the DNS reply being only 512 bytes long. Even though theoretically there could be 15, this leaves some play for various sized DNS packets. That's why increasing the root servers from 13 to 26 wouldn't be too practical. Instead, they use multiple sites for a single server address. Google it and for sure you'll come up with some more info. :)
page: 1






Your Talkback on this Story