[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DNS Attacks

Subject: DNS Attacks
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 19 Feb 2012 09:23:40 -0500
In-reply-to: Your message of "Sun, 19 Feb 2012 13:02:01 +0100." <[email protected]>
References: <[email protected]> <[email protected]> <CAMhuimisRngM_0si_fdWRhcxA-YOMASyzi4XHm-zOE-_uM0+2Q@mail.gmail.com> <[email protected]> <[email protected]>

On Sun, 19 Feb 2012 13:02:01 +0100, Jeroen Massar said:

> Per default most webservers (Apache, nginx, etc) won't log POST
> variables, GET variables will be logged (as they are part of the query)
> but those should not contain any PII.

Right. They shouldn't.  But the security mailing lists have lots of
counter-examples from clue-challenged web developers.. Plan your logging
strategy accordingly (is there any safe answer here other than "disable
logging" or "log only timestamp and source IP"?)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 865 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20120219/5a686cab/attachment.bin>

References:
- DNS Attacks
  - From: Joel.Snyder at Opus1.COM (Joel M Snyder)
- DNS Attacks
  - From: bonomi at mail.r-bonomi.com (Robert Bonomi)
- DNS Attacks
  - From: ken.gilmour at gmail.com (Ken Gilmour)
- DNS Attacks
  - From: patrick at ianai.net (Patrick W. Gilmore)
- DNS Attacks
  - From: jeroen at unfix.org (Jeroen Massar)

Prev by Date: DNS Attacks
Next by Date: CLEC in NJ for Sprint/Centurytel
Previous by thread: DNS Attacks
Next by thread: DNS Attacks
Index(es):
- Date
- Thread