National Cyber Awareness System
TA13-088A: DNS Amplification Attacks
Original release date: March 29, 2013
* Domain Name System (DNS) servers
A Domain Name Server (DNS) Amplification attack is a popular form of
Distributed Denial of Service (DDoS) that relies on the use of
publically accessible open recursive DNS servers to overwhelm a victim
system with DNS response traffic.
The entire document, well worth your time to read, can be found at http://www.us-cert.gov/ncas/alerts/TA13-088A
Hope this helps some.