[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
From: Matthew Dixon Cowles <matt@xxxxxxxxxxxxx>
Date: Wed, 18 Apr 2007 16:40:26 -0500 (CDT)

[Bojan Zdrnja]
> I'm not sure what's the story with other DNS servers (djbdns, for
> example).

In regard to djbdns, I believe that that's answered at:

http://cr.yp.to/djbdns/dnscache.html

where it says:

    dnscache does not cache (or pass along) records outside the
    server's bailiwick; those records could be poisoned. Records for
    foo.dom, for example, are accepted only from the root servers,
    the dom servers, and the foo.dom servers.

Regards,
Matt

References:
- RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Roger A. Grimes
- Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Makoto Shiotsuki
- RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Roger A. Grimes
- Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Bojan Zdrnja

Prev by Date: Re: [funsec] Re: [Full-disclosure] A Botted Fortune 500 a Day
Next by Date: NuclearBB Alpha 1 - Multiple Blind SQL/XPath Injection Vulnerabilities
Previous by thread: Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
Next by thread: [ GLSA 200704-10 ] Inkscape: Two format string vulnerabilities
Index(es):
- Date
- Thread