Ok, nice that this has been clarified. I'm still wondering why this kind of attack reached me just recently, considering the method has been known for a long time.
On Tue, 29 Nov 2005, fugi@xxxxxx wrote:
DNS traffic is UDP, source is spoofed, you setup a large record and request it from the victim's IP to a list of nameservers. http://packetstormsecurity.org/DoS/ihateperl.pl nothing new
Best regards, Piotr Kamisiński