[bind10-dev] ddns
Shane Kerr
shane at isc.org
Mon Dec 5 12:48:29 UTC 2011
Jinmei,
On Thu, 2011-12-01 at 23:37 -0800, JINMEI Tatuya / 神明達哉 wrote:
> At Wed, 30 Nov 2011 11:35:10 +0100,
> Shane Kerr <shane at isc.org> wrote:
>
> > > Is that a known problem or your opinion? I don't think it causes any
> > > essential leakage of information that cannot be retrieved otherwise.
> > > For example, if you want to know whether a particular server has
> > > authority for a particular zone, you can simply send an SOA query for
> > > that zone name to that server. I believe other information that could
> > > be "leaked" via prerequisite failures can also be retrieved via simple
> > > normal queries.
> >
> > Hm... this is based on a vague memory of mine. I went back through the
> > BIND 9 changelog and didn't seen anything related to this, so perhaps I
> > am crazy. :( IIRC Michael knows this particular issue in detail.
>
> It's probably this one:
>
> 2737. [func] UPDATE requests can leak existence information.
> [RT #17261]
Yes, that's probably it.
Good to know I'm not crazy, even if my memory is fuzzy. :)
--
Shane
More information about the bind10-dev
mailing list