The inter-institutional work covers the territory of Latin America and the Caribbean.
An OpenResolver is a DNS server that responds to name resolution requests from domains for which they are not authoritative. They are also known as recursive. That is, they respond to requests from basically anyone who asks them. This is dangerous, mainly because it lends itself to so-called amplification attacks, which would flood the server and eventually crash it.
For this reason, the CSIRT- CEDIA has worked hard in recent years to reduce the number of OpenResolvers in CEDIA member institutions, managing to reach and maintain it normally at zero. This result and experience led us to begin technical collaboration work with LACNIC for the automated detection of OpenResolvers in Latin America and the Caribbean. The preliminary results led us to coordinate a joint meeting with technical representatives from Shadowserver, in order to analyze the detection procedures and strategies designed in this first phase, as well as to outline the reporting and notification means and strategies, with the final objective to achieve a reduction in the number of OpenResolvers in the region.
If you want to know more about our CSIRT and its management, enter: https://www. cedia .edu.ec/es/services/technology/infrastructure/csirt