wrong reverse dns answer, corrupted cache
Doug Barton
DougB at DougBarton.net
Sat Jan 26 02:42:49 UTC 2002
On Fri, 25 Jan 2002, Kevin Darcy wrote:
> Modern versions of BIND tend to be immune from this form of cache poisoning
> because they keep good track of "credibility" and won't overwrite data of
> high credibility (e.g. the delegation from arpa to in-addr.arpa) with data of
> low credibility (e.g. hinet.net's outrageous claims of in-addr.arpa
> authoritativeness). However, older versions of BIND, and non-BIND nameserver
> software, may still get poisoned.
Would that this were true. My mixture of BIND 8.2.[45] name
servers regularly got poisoned with this exact same crap until I marked
those name servers bogus. It didn't always last very long, but my servers
did cache the answer sometimes.
Doug
--
"We will not tire, we will not falter, and we will not fail."
- George W. Bush, President of the United States
September 20, 2001
Do YOU Yahoo!?
More information about the bind-users
mailing list