Edit: This information is old and may longer be relevant. An open resolver is a dns server, which will allow a recursive query of an arbitrary domain from any IP address. An open resolver can be used in a reflection DDoS. Only Subnets controlled by the organization should be allowed to conduct recursive queries on a dns server. [1] The problem is bind comes from Red Hat, which has locked the 5.x version to the …