oss-sec mailing list archives

Re: DNS vulnerability: other relevant software

From: Thomas Biege <thomas () suse de>
Date: Thu, 10 Jul 2008 16:27:33 +0200

- dnsmasq [2]:
      no port randomization [3]

dnsmasq is a simple forwarder AFAIK threfore it should not be vulnerable.
the author told me he will add TRXID and port randomization...

- pdnsd [4]:
      no info yet


powerdns-recursor uses port randomization with a better
PRNG than glibc rand() since version 3.1.6.

-- 
Bye,
     Thomas
-- 
 Thomas Biege <thomas () suse de>, SUSE LINUX, Security Support & Auditing
 SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)
-- 
           Hamming's Motto:
           The purpose of computing is insight, not numbers.
                                -- Richard W. Hamming

Current thread:

Re: DNS vulnerability: other relevant software, (continued)
- - - Re: DNS vulnerability: other relevant software Eugene Teo (Jul 09)
    - Re: DNS vulnerability: other relevant software Eugene Teo (Jul 09)
    - Re: DNS vulnerability: other relevant software Eugene Teo (Jul 10)
    - Re: DNS vulnerability: other relevant software Nathanael Hoyle (Jul 10)
    - Re: DNS vulnerability: other relevant software Bernhard R. Link (Jul 11)
    - Re: DNS vulnerability: other relevant software Nathanael Hoyle (Jul 11)
    - Re: DNS vulnerability: other relevant software Florian Weimer (Jul 13)
    - Re: DNS vulnerability: other relevant software Florian Weimer (Jul 12)
    - Re: DNS vulnerability: other relevant software Eugene Teo (Jul 09)
- Re: DNS vulnerability: other relevant software Robert Buchholz (Jul 09)
- Re: DNS vulnerability: other relevant software Thomas Biege (Jul 10)