RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing

To: "Makoto Shiotsuki" <shio@xxxxxxxxxxxx>
Subject: RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
From: "Roger A. Grimes" <roger@xxxxxxxxxxxxxx>
Date: Tue, 17 Apr 2007 12:48:04 -0400
Cc: <bugtraq@xxxxxxxxxxxxxxxxx>
In-reply-to: <200704171630.AA00000@xxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <096A04F511B7FD4995AE55F13824B833212965@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <200704171630.AA00000@xxxxxxxxxxxxxxxxxxxx>
Thread-index: AceBDii97GpJmtl3RbKES6SBQbIv+AAAe4GA
Thread-topic: Windows DNS Cache Poisoning by Forwarder DNS Spoofing

How does BIND stop this sort of attack? 

Can a BIND expert respond?

Roger

*****************************************************************
*Roger A. Grimes, InfoWorld, Security Columnist 
*CPA, CISSP, MCSE: Security (2000/2003/MVP), CEH, yada...yada...
*email: roger_grimes@xxxxxxxxxxxxx or roger@xxxxxxxxxxxxxx
*Author of Professional Windows Desktop and Server Hardening (Wrox)
*http://www.amazon.com/gp/product/0764599909
*****************************************************************


-----Original Message-----
From: Makoto Shiotsuki [mailto:shio@xxxxxxxxxxxx] 
Sent: Tuesday, April 17, 2007 12:31 PM
To: Roger A. Grimes
Cc: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing

>One question.  Is BIND any better at preventing this type of attack? 

As far as I know, this vulnerability is specific to the Windows DNS.

Makoto Shiotsuki

Follow-Ups:
- Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Bojan Zdrnja
- Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: 3APA3A

References:
- RE: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Roger A. Grimes
- Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
  - From: Makoto Shiotsuki

Prev by Date: iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability
Next by Date: Re: bloofoxCMS 0.2.2 Remote File Include Vulnerabilitiy
Previous by thread: Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
Next by thread: Re[2]: Windows DNS Cache Poisoning by Forwarder DNS Spoofing
Index(es):
- Date
- Thread