You can take several measures to prevent attacks against DHCP servers and DHCP clients. These measures range from monitoring membership in the DHCP Administrators group to performing specific DHCP service configuration. Specifically, consider the following measures:
Keep default name registration behavior.
Determine which account to include in the membership of the DnsUpdateProxy group.
Review the DHCP database frequently for BAD_ADDRESS entries.
Monitor membership in the DHCP Administrators group.
Enable DHCP auditing.
By default, when a DHCP client obtains IP configuration information from a DHCP server, the DHCP server registers the PTR resource record for the client and the client ...