nanog mailing list archives

Re: News of ISC Developing BIND Patch

From: Iljitsch van Beijnum <iljitsch () muada com>
Date: Wed, 17 Sep 2003 14:10:32 +0200 (CEST)


On Wed, 17 Sep 2003, Simon Waters wrote:

As such any root server operator can potentially hijack a significant
amount (majority?) of Internet traffic, at least if no one notices
something odd, and figures out what is going on too quickly. This is DNS
security 101...

A single rogue root server could be very messy to cleanup after if the
person in control of the rogue server were skilled in the art (and root
server operators are suppose to be so skilled to get the job).


Fortunately people will start noticing within minutes if not seconds. A
quick manual purge of the resolver cache should suffice for cleanup once
the problem itself has been fixed.

Current thread:

Re: News of ISC Developing BIND Patch, (continued)
- - - Re: News of ISC Developing BIND Patch John Kristoff (Sep 18)
    - Re: News of ISC Developing BIND Patch David Lesher (Sep 18)
    - Re: News of ISC Developing BIND Patch Dominic J. Eidson (Sep 18)
    - Re: News of ISC Developing BIND Patch Crist Clark (Sep 18)
    - Re: News of ISC Developing BIND Patch Chris Boyd (Sep 18)
    - Re: News of ISC Developing BIND Patch David G. Andersen (Sep 17)
    - Re: News of ISC Developing BIND Patch Vadim Antonov (Sep 17)
    - Charlotte, NC Services Wanted Ray Burkholder (Sep 16)
  - Neeed a new RFC? Roy (Sep 16)
- Re: News of ISC Developing BIND Patch Simon Waters (Sep 17)
  - Re: News of ISC Developing BIND Patch Iljitsch van Beijnum (Sep 17)
- RE: News of ISC Developing BIND Patch Adam Atkinson (Sep 19)