Tightened DNS security question re: DNS amplification attacks.


> Quoting John Martinez <jmartinez@zero11.com>:
>> Are we still seeing DNS DDoS attack?
> Yep. I'm seeing ~2 queries/sec targetting
> Also seeing requests from every 1 minute 2 seconds.

I run a small personal nameserver and even I am seeing requests for that
address at ~1/sec.

How many people have upgraded to the latest version of Bind 9? Reason
I ask is that when I do my nightly port scan of my server, I no longer see
named listening to udp on a random high order port (for replies I believe?).
Almost the next day, I started hearing about/seeing these DNS attacks.

  Totally unrelated. Named now creates multiple listening
  ports on demand.