SECURE Dynamic DNS
Barry Margolin
barmar at bbnplanet.com
Tue Jun 1 20:26:21 UTC 1999
In article <3751080E.83B7C2E9 at dhs.org>, <menger at dhs.org> wrote:
> While setting it up I was talking to several people on IRC who ran
>another DNS provider and one of them showed that it is possible to spoof
>the update packet hence makeing it possible for anyone to update the
>dynamic zone as long as they know which IP address to send the update
>packet from.
The extent of this danger can be limited by using anti-spoofing filters on
routers. You would still be subject to spoofing from within your LAN, but
not from the rest of the Internet.
--
Barry Margolin, barmar at bbnplanet.com
GTE Internetworking, Powered by BBN, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.
More information about the bind-users
mailing list