科技回声

3 条评论

mschout大约 14 年前

If <i>this</i> article makes you think DNS is complex, just wait until you have to deploy DNSSEC!

评论 #2280276 未加载

ez77大约 14 年前

Why is UDP used for DNS instead of TCP? Isn't TCP supposed to be more reliable (<i>lossless</i>)? Reliability would appear to be of utmost importance in DNS, no?

评论 #2279550 未加载

评论 #2280337 未加载

评论 #2279484 未加载

评论 #2279607 未加载

评论 #2279481 未加载

评论 #2281907 未加载

评论 #2279586 未加载

评论 #2282042 未加载

评论 #2279973 未加载

评论 #2280345 未加载

contravert大约 14 年前

Why are there so few DDOS attacks on DNS servers? From my understanding, it is trivial to forge a UDP packet with a false IP address. Wouldn't it be extremely effective for even a few thousand zombie machines to spam forged DNS requests to overload a DNS server? Given that the root DNS servers are such obvious targets, why are there so few attacks on them?

评论 #2284389 未加载

DNS has grown into an enormously complex system

3 条评论

DNS has grown into an enormously complex system

3 条评论