Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > March 2006 > DNS Recursion Attacks - Update

March 2006

DNS Recursion Attacks - Update

ID: 00256
Ref: 254/2006
Date: 31 March 2006:14:09:44
Version: 1
Title: DNS Recursion Attacks - Update
Abstract:
Vendors affected: DNS Recursion Attacks - Update
Operating systems affected: DNS Recursion Attacks - Update
Applications affected: DNS Recursion Attacks - Update

Title
=====
DNS Recursion Attacks - Update


Detail
======

There has been renewed interest in DNS recursion attacks within security mailing
lists, websites and the media. If you are concerned about the potential problems
that DNS recursion attacks can cause, US-CERT has released an updated version of its
paper entitled "The Continuing Denial of Service Threat Posed by DNS Recursion, now
v2.0.

The paper is available on the US-CERT web site from the following URL:
http://www.us-cert.gov/reading_room/DNS-recursion033006.pdf

US-CERT is encouraging wide dissemination of this paper and organizations that
currently have DNS recursion enabled are encouraged to disable it if possible.

UNIRAS will continue to monitor the situation, and will issue further information
if necessary.

  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |