Hi Andreas, Aren't you dumping on the wrong interface here? Should it not be your $ext_if where the alleged poisoning will come from?
2008/7/9 Rod Whitworth <[EMAIL PROTECTED]>: > On Wed, 9 Jul 2008 11:10:09 +0200, Andreas Maus wrote: > > >Hi. > > > >I guess OpenBSDs named is affected by the actual issue: > > > >http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 > >http://www.kb.cert.org/vuls/id/800113 > > > >So I hope a patch is in progress ? > >Or is OpenBSD not affected by this issue? > > > >So long, > > > >Andreas. > >-- > > > # tcpdump -nettti rl0 dst port 53 > tcpdump: listening on rl0, link-type EN10MB > Jul 09 19:48:27.786683 00:01:80:0f:2b:94 00:00:24:c6:18:85 0800 70: > 192.168.80.4.16284 > 192.168.80.1.53: 57120+ A? pps.com.au. (28) > Jul 09 19:48:43.690332 00:01:80:0f:2b:94 00:00:24:c6:18:85 0800 67: > 192.168.80.4.1356 > 192.168.80.1.53: 32536+ A? ibm.com. (25) > Jul 09 19:49:11.013223 00:01:80:0f:2b:94 00:00:24:c6:18:85 0800 69: > 192.168.80.4.14540 > 192.168.80.1.53: 29420+ A? intel.com. (27) > .... > > # uname -a > OpenBSD master.witworx.com 4.3 GENERIC#698 i386 > > Guess again. > > Was that so hard to try? > > R/ > ** note replies off-list are not required. If you insist you MUST use > the reply-to: address. > The sender address is a tarpit except for the list servers. *** > > Rod/ > > A consultant is someone who's called in when someone has painted himself > into a corner. He's expected to levitate his client out of that corner. > > -The Sayings of Chairman Morrow. 1984.
