[Pdns-dev] DNS Vulnerability
bert hubert
bert.hubert at netherlabs.nl
Fri Aug 1 17:59:17 CEST 2008
On Fri, Aug 01, 2008 at 10:53:44AM -0400, Dean Anderson wrote:
> I heard a rumor that PDNS already implements port randomization, and so
> is invulnerable (well, nearly) to the same degree that DJBdns is
> invulnerable to this attack. Can anyone tell me in what version of PDNS
> this started?
Around 3.0 for the recursor, in 2006 somewhere. The auth server is not in
the scope of the vulnerability.
Bert
--
http://www.PowerDNS.com Open source, database driven DNS Software
http://netherlabs.nl Open and Closed source services
More information about the Pdns-dev
mailing list