Re: OpenBSD & BIND 9 cache poisoning

Another reason to deploy OpenBSD :o) -Alan Cheng -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jakob Schlyter Sent: 2007年7月26日 3:29 To: misc@openbsd.org Subject: OpenBSD & BIND 9 cache poisoning as some of you may have noticed, a new weakness in

OpenBSD & BIND 9 cache poisoning

as some of you may have noticed, a new weakness in BIND 9 has recently been discovered. using this weakness, an attacker can remotely poison the cache of any BIND 9 server. the attacker can do this due to a weakness in the transaction ID generation algorithm used. when BIND 9 was first im