SQUISH LOGO  

Respond to this messageReturn to Index
Original Message
  • Re: DNS query source UDP port
    • Attila Bruncsak (Login bruncsak)
      Posted Jul 10, 2008 9:58 AM

      Hi,

      Most of the DNS servers and resolver library going to be updated due to the yesterday's disclosure of the weak security of DNS protocol against of the DNS cache poisoning attack via spoofed answer packets. Since the cryptographically strong randomization of the source port is a used workaround to improve on that security problem, it is going to be even more difficult to debug DNS related problems if a router blocks the IP packets if their source port is outside of a given arbitrary range. Is it possible to improve on the web interface to optionally fix the source port for the query? That would greatly improve on the dnscheck tool.

      Bests,
      Attila
    Login Status
  • You are not logged in
    • Login
      Password
       

      Optional
      Provides additional benefits such as notifications, signatures, and user authentication.


      Create Account
    Your Name
    Message Title
    Message Text
    Options