HIS.com Status: HIS nameservers - April 1 change
HIS System Status Updates
status at his.com
Mon Mar 27 17:18:05 EST 2006
Recently a new distributed denial of service (DDoS) vector has appeared
that uses recursive nameservers to deluge victim systems with data,
effectively cutting them off from the net for the duration of the
attack. This has the potential to be the biggest denial of service
threat the net has seen up to this point.
Recursive nameservers are ones that let you look up, say, www.cnn.com
and get an IP number. You use such a nameserver every time you go to a
web site or access your mail.
Until now, we have allowed our nameservers to be used by anyone
anywhere. Because of this problem, we must limit access to people who
are directly connected to our network through HIS dialup, DSL, or T1
connections. If you're using Verizon, Comcast, RoadRunner, Speakeasy,
etc. for your high speed access, you'll need to use their DNS servers.
For most people this won't be a problem - in most cases DNS server IP
numbers are assigned automatically when you connect. Some folks have
entered our DNS server numbers manually,though, and have left these in
place even after moving their access to cable or DSL - in these cases
access will stop on April 1.
If you're connecting through Comcast, Verizon, or anybody other than
HIS, check your networking control panel - if there are no IP numbers
entered for nameservers, or the IP numbers entered are ones provided by
your access provider, you're in good shape. If not, call your access
provider to get the right DNS server IP numbers to use.
This change will go into effect on Wednesday, April 1. Sorry for the
short notice - the magnitude of this threat is such that we feel that we
need to make this change with minimal delay.
--
Paul Heller
ph at his.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists101.his.com/pipermail/status/attachments/20060327/ecb80fa2/attachment.html
More information about the Status
mailing list