Y
Hacker News
new
|
ask
|
show
|
jobs
by
recsv-heredoc
297 days ago
Setting your upstream to 1.1.1.1 or 8.8.8.8 should mitigate this, as these appear to respond with NXDOMAIN to invalid domains rather than fail silently which would close the window for the attack.