Denial of Service Threat Posed by DNS Recursion

About DoS Threat



Using spoofed recursive DNS requests to cause distributed denial of service (DDoS) attacks have increased. An attacker sends several thousand spoofed requests at a DNS server that allows recursion, sending a flood of DNS replies taking up space and data. If a DNS Server is misconfigured it can be used as a DNS recursion amplifier, allowing it to be used in a DDoS attack.



To Protect DNS Servers from Abuse



Restricting recursion and preventing DNS-based DoS attacks and cache poisoning by disabling the ability to send additional delegation information can be the first step to protecting DNS server abuse.

Var dette svaret til hjelp?

 Print

Les også disse

Configure your DNS Server (CentOS/Fedora)

If the DNS daemon is not installed on your server, installing it is very simple. Using the built...

How DNS Works

DNS (Domain Name Services) are not the enigma many new users see them as. Once the process is...

ISC BIND Name Server

DNS (Domain Name Services) are not the enigma many new users see them as. Once the process is...

Disable Recursion in Linux

Recursion Disabling in Linux Follow the below steps to disable recursion in Linux: Find the...