Re: Tinydns - cache poisoning?
I was querying my tinydns remotely which was using bind locally. When I ran the dig command on the box itself (which uses the local dnscache) it didn't return anything.
So looks like its all clear..
On Wed, Jul 30, 2008 at 3:06 PM, Florian Weimer <email@example.com>
* Stephen Vaughan:
tinydns as in djbdns? dnscache (the iterative resolver component of
> Does anyone know if TinyDNS is vulnerable to the dns cache poisoning
> exploit? I run tinydns servers, I ran the test below and it came back as
djbdns) uses source port randomization, so no code changes are required.
This should not happen with dnscache. Perhaps you're behind a
not-so-transparent DNS proxy, and you're actually testing your ISP's