[dns-operations] Program/library/framework for testing robustness of servers

Daniel Karrenberg dfk at ripe.net
Mon Jun 20 13:35:34 UTC 2022


Salut Stephane,

https://meetings.ripe.net/ripe-43/presentations/ripe43-dnr-distel/sld001.html

This is the idea.Prepare file to replay with fuzzer or use real world 
malformed queries. ;-)

The separate tools are still all available. I could dig into my archive 
and see if I still have the scripts and the patches to tcpreplay. If I 
remember correctly the changes were to replay UDP and to re-compute 
checksums.

Cordialment

Daniel




On 20-06-2022 09:14, Stephane Bortzmeyer wrote:
> I maintain an experimental authoritative DNS server and I would like
> to test its robustness. dnsperf and flamethrower are great to test its
> performance, zonemaster and dnsviz are perfect to test its correctness
> in face of legal input but I would like to see how it reacts to
> *illegal*, malformed input. (An example of such input is
> <https://lists.dns-oarc.net/pipermail/dns-operations/2022-May/021657.html>.)
>
> Since most DNS libraries are made to prevent the programmer for
> issuing illegal DNS requests, it is not obvious to write such a test.
>
> Are you aware of libraries / programs / frameworks to exercice, in a
> hard way, the robustness of a server?
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
>



More information about the dns-operations mailing list