BIND 9 cache posioning exploit discoverd -- not the one on OpenBSD
来源:互联网 发布:迅捷网络初始密码 编辑:程序博客网 时间:2024/05/21 17:41
as some of you may have noticed, a new weakness in BIND 9 has recently been discovered. using this weakness, an attacker can remotely poison the cache of any BIND 9 server. the attacker can do this due to a weakness in the transaction ID generation algorithm used.
when BIND 9 was first imported into OpenBSD, we decided not to use the default ID generation algorithm (LFSR, Linear Feedback Shift
Register) but to use a more proven algorithm (LCG, Linear Congruential Generator) instead. thanks to this wise decision, the BIND 9 shipped with OpenBSD does not have this weakness.
Register) but to use a more proven algorithm (LCG, Linear Congruential Generator) instead. thanks to this wise decision, the BIND 9 shipped with OpenBSD does not have this weakness.
the proactive security of OpenBSD strikes again,
jakob
ref: http://www.trusteer.com/docs/bind9dns.html
http://www.securiteam.com/securitynews/5VP0L0UM0A.html
==============================================================================
A glance at the README.OpenBSD file for 4.1 in /usr/src/usr.sbin/bind shows (among other things):
- add LCG (Linear Congruential Generator) implementation to libisc
- use LCG instead of LFSR for ID generation until LFSR is proven reliable
- strlcpy/strlcat/snprintf fixes
- use LCG instead of LFSR for ID generation until LFSR is proven reliable
- strlcpy/strlcat/snprintf fixes
Without digging into things deeper, it looks like this is unlikely to be an issue since the OBSD version doesn't rely on LFSR.
==============================================================================
- BIND 9 cache posioning exploit discoverd -- not the one on OpenBSD
- adding extra disks on openbsd the fast way
- BIND 9.5.0-P2 (randomized ports) Remote DNS Cache Poisoning Exploit
- iOS app 'The application could not be verified' only on one device
- on()、live()、bind()、one()的区别
- jquery中bind,live,on,one,delegate的区分
- Installing OpenBSD on VMware Server
- Specify the column on one-to-many
- Share: The Icon No One Agrees On
- [INS-41107]eth0 selected for one or more of the public or private interfaces is not on a shared subn
- The 'XXX' Cache is not alive (STATUS_SHUTDOWN)
- The OpenBSD 4.0 Crash Course
- magento:One or more of the Cache Types are invalidated
- Understanding Caching in Hibernate – Part One : The Session Cache
- “Service 'Driver' could not bind on port”错误的解决方法
- saving-the-android-webview-cache-on-the-sd-card
- 105. Courtesy on one side only lasts not long. 来而不往非礼也
- Advance exploit on PowerHA7.1
- 他的儿子在美国小学是这样被人教育的(作者:薛涌)
- 在scite中编译c++代码
- 利用.net开发可扩展的数据访问架构
- (七) 给PageLayoutControl添加弹出式菜单
- .NET2.0隐形的翅膀,正则表达式搜魂者
- BIND 9 cache posioning exploit discoverd -- not the one on OpenBSD
- (八) 在TOCControl中控制标签编辑
- 用 RAM Disk 提高编译速度?
- sybase 日志文件存放位置
- 类在ClassView”中,看不到。怎么恢复??
- Linux通过Smb与Windows共享目录
- 初识IPv6(二)
- 关于类的继承测试程序
- 访问控制修饰符public, protected, private