Re: Windows DNS Cache Poisoning by Forwarder DNS Spoofing

[Matthew Dixon Cowles <matt@xxxxxxxxxxxxx>]

[Bojan Zdrnja]
> I'm not sure what's the story with other DNS servers (djbdns, for
> example).

In regard to djbdns, I believe that that's answered at:

http://cr.yp.to/djbdns/dnscache.html

where it says:

    dnscache does not cache (or pass along) records outside the
    server's bailiwick; those records could be poisoned. Records for
    foo.dom, for example, are accepted only from the root servers,
    the dom servers, and the foo.dom servers.

Regards,
Matt