3 Nov
2012
3 Nov
'12
7:20 p.m.
On Nov 4, 2012, at 12:37 PM, Bruce Kingsbury wrote:
It took me longer than it should have to figure out what was going on, seems that the Urban Terror server can be exploited as a UDP traffic amplifier too.
We see Quake3 (!) servers being exploited in this fashion, as well. DNS reflection/amplification attacks are generally the largest attacks in terms of bandwidth (e.g., bps), followed by SNMP reflection/amplification attacks and then ntp reflection/amplification attacks. The various game servers come after that. ----------------------------------------------------------------------- Roland Dobbins <rdobbins(a)arbor.net> // <http://www.arbornetworks.com> Luck is the residue of opportunity and design. -- John Milton