3 Nov
2012
3 Nov
'12
7:20 p.m.
On Nov 4, 2012, at 12:37 PM, Bruce Kingsbury wrote:
It took me longer than it should have to figure out what was going on, seems that the Urban Terror server can be exploited as a UDP traffic amplifier too.
We see Quake3 (!) servers being exploited in this fashion, as well.
DNS reflection/amplification attacks are generally the largest attacks in terms of bandwidth (e.g., bps), followed by SNMP reflection/amplification attacks and then ntp reflection/amplification attacks. The various game servers come after that.
-----------------------------------------------------------------------
Roland Dobbins