[nsp-sec] DNS poisoning activity in the wild
Florian Weimer
fweimer at bfk.de
Wed Jul 30 11:06:19 EDT 2008
* Leo Bicknell:
> ISC is hosting a couple of different DNS researchers who are looking
> at the vunerability and if there is active cache corruption in the
> wild. Given these tools have been rather quickly thrown together
> they are still working out some of the bugs, including repeated
> queries to ACL'ed hosts.
Thanks for the explanation. Announcements in advance might be helpful
in the future.
Could you provide a PTR record without any magic activity for the main
scanning host? The current setup is very close to reaching a DNS
timeout (and hence SERVFAIL in the response to the client).
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the nsp-security
mailing list