[dns-operations] CERT VU#800113 Multiple DNS implementations vulnerable to cache poisoning

Paul Vixie vixie at isc.org
Fri Jul 11 16:46:49 UTC 2008


> You can mount several attacks from your own authoritive nameserver. It's
> tricky to convince the resolver to believe in data outside your zone, but
> think about the problems we had with (errornous) lame delegation.

if you know of a current attack along these lines, please do tell.  we fixed
the kashpureff problems a decade ago.  what's left?

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.




More information about the dns-operations mailing list