This paper from UC Riverside given at this week's ACM CCS '20 conference describes a DNS cache poisoning attack that uses weaknesses in UDP stacks. They say it works on real public caches including Cloudflare, Google, and Quad 9,
https://www.cs.ucr.edu/~zhiyunq/pub/ccs20_dns_poisoning.pdf -- Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
