Usage of TCP/53
peter at peter-dambier.de
Thu Sep 28 18:52:05 UTC 2006
Ralf Durkee wrote:
> I have a question about usage of the TCP port 53 by DNS servers in
> general, and BIND in particular. I've heard it stated that only zone
> transfers use the tcp port, but it was my understanding that it could
> also be used in other circumstances to handle larger
> requests/responses. Are there other uses of TCP/53? What would they be?
> -- Ralf Durkee, CISSP, GSEC, GCIH, GSNA
> Principal Security Consultant
All queries can be either UDP or TCP. Sometimes servers, routers or
firewalls are broken and TCP is your only chance.
Address spoofing attacks dont work with TCP because they are building
a session. In the long run some people would like to get rid of UDP
and use TCP only, especially on open resolvers.
Peter and Karin
Peter and Karin Dambier
Cesidian Root - Radice Cesidiana
+49(6252)750-308 (VoIP: sipgate.de)
mail: peter at peter-dambier.de
mail: peter at echnaton.serveftp.com
More information about the bind-users