Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SQL Slammer - lessons learned

From: Ron DuFresne <dufresne () winternet com>
Date: Thu, 6 Feb 2003 14:45:20 -0600 (CST)
On Thu, 6 Feb 2003, David Howe wrote:


at Wednesday, February 05, 2003 6:32 PM, Niels Bakker
<niels=netsys () bakker net> was seen to say:

Please learn how the Internet works.  BIND8 and up don't use 53 as
source for outgoing queries anymore by default; you can override this
in named.conf with

I don't think it really matters what port bind replies on - but it is
worth remembering that dns is udp, and queries could well come *from*
port 1434 on a client (so blocking replies)



of course the client will reissue the request on aonther port and  get the
info required.  No harm done.


Thanks,

Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: