Re: Multiple DNS implementations vulnerable to cache poisoning

• From: Jean-François Mezei
• Date: Wed Jul 09 00:04:52 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

Re: the tool

My DNS server does not serve the outside world. Incoming packets to port
53 are NAT directed to an non-existant IP on the LAN.

The tool uses my internet facing IP as my DNS server and tells me I am
vulnerable. Since, from the internet, connecting to that IP at port 53
will not get you to a DNS server, I find the tool's conclusion rather
without much value.

• Follow-Ups:
  • Re: Multiple DNS implementations vulnerable to cache poisoning Chris Adams

• References:
  • Multiple DNS implementations vulnerable to cache poisoning Buhrmaster, Gary
  • Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth
  • Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth
  • Re: Multiple DNS implementations vulnerable to cache poisoning Lynda
  • Re: Multiple DNS implementations vulnerable to cache poisoning Owen DeLong
  • Re: Multiple DNS implementations vulnerable to cache poisoning Christian Koch
  • Re: Multiple DNS implementations vulnerable to cache poisoning Jimmy Hess

• Prev by Date: Re: Multiple DNS implementations vulnerable to cache poisoning
• Next by Date: Re: Multiple DNS implementations vulnerable to cache poisoning
• Date Index
• Thread Index
• Author Index
• Historical