dns localhost problem
Joseph S D Yao
jsdy at cospo.osis.gov
Tue Sep 26 16:13:47 UTC 2000
On Tue, Sep 26, 2000 at 04:52:16PM +0100, Jim Reid wrote:
...
> and implemented. There was an article on slashdot recently that
> explained how to use the DNS as a means of transporting IP
> datagrams. There was even a link to the code for doing this. So it's
> now possible to use DNS packets to tunnel IP packets and have a name
> server provide a covert channel for unwanted traffic. Most firewalls
> are supposed to block unwanted traffic, so the capability to tunnel IP
> over DNS is probably unacceptable. That would tend to imply that DNS
> through the firewall should be unacceptable too.
Yah. This has always been possible. Now, everyone knows how to do
that.
--
Joe Yao jsdy at cospo.osis.gov - Joseph S. D. Yao
COSPO/OSIS Computer Support EMT-B
-----------------------------------------------------------------------
This message is not an official statement of COSPO policies.
More information about the bind-users
mailing list