US-CERT has been alerted to an increase in distributed denial of service (DDoS) attacks using spoofed recursive DNS requests. These attacks are troublesome because all systems communicating over the Internet need to allow DNS traffic. This paper provides information about configuring DNS servers to protect against this threat. Click here to download it.