Vulnerability to cache poisoning -- the rest of the solution

Alan Clegg Alan_Clegg at isc.org
Mon Jul 14 14:44:16 UTC 2008


Jeff Lightner wrote:
> If that's the case why wouldn't we have needed to open firewall to allow
> this behavior for tcp?
You would have.  Unless you never had (functional) DNS queries/transfers
over TCP.

AlanC




More information about the bind-users mailing list