Possible cache poisoning
lst_hoe02 at kwsoft.de
lst_hoe02 at kwsoft.de
Tue Oct 26 07:59:33 UTC 2010
Zitat von The Doctor <doctor at doctor.nl2k.ab.ca>:
> My question is how can you detect if a DSN / Domain name
> has been 'poisoned'?
Compare what your cache deliver with results from other sites. To
prevent cache poison you might use DNSSEC if the zones which are
affected support it and at least use a recent Resolver with ID/port
randomization.
Regards
Andreas
More information about the bind-users
mailing list