[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

To: Amit Klein <aksecurity@xxxxxxxxx>
Subject: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
From: Tim Newsham <newsham@xxxxxxxx>
Date: Fri, 27 Jul 2007 08:54:33 -1000 (HST)

"it's not like this hasn't been reported, and fixed, many times by manyothers" - so if it's fixed so many times, how come it was still vulnerable,and ISC had to issue their patches?

Because its just a 16-bit field. DNS is broken. Cache poisoning willhappen. Those are the facts on the ground. The only argument left

is the degree of brokenness.

-Amit

Tim Newsham
http://www.thenewsh.com/~newsham/

Follow-Ups:
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Amit Klein

References:
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: securityfocus
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Jamie Riden
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Gadi Evron
- Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
  - From: Amit Klein

Prev by Date: Anti XSS AJAX
Next by Date: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Previous by thread: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Next by thread: Re: "BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)
Index(es):
- Date
- Thread