Hosting Provided By

Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

From: Tim Newsham <newsham(at)lava.net>
Date: Fri Jul 27 2007 - 14:54:33 EDT

> "it's not like this hasn't been reported, and fixed, many times by many
> others" - so if it's fixed so many times, how come it was still vulnerable,
> and ISC had to issue their patches?

Because its just a 16-bit field. DNS is broken. Cache poisoning will happen. Those are the facts on the ground. The only argument left is the degree of brokenness.

> -Amit

Tim Newsham
http://www.thenewsh.com/~newsham/ Received on Fri Jul 27 15:31:45 2007

This message: [ Message body ]
Next message: Amit Klein: "Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)"
Previous message: Fady Anwar: "Anti XSS AJAX"
In reply to: Amit Klein: "Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)"
Next in thread: Amit Klein: "Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)"
Reply: Amit Klein: "Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:10:20 EDT