Public bug reported:
The fix that's been applied for bug #974509 checks for the presence of a
redirector by looking of three hostnames, and treating as invalid any
results pointing to a matching address:
- does-not-exist.example.com.
- example.invalid.
- a random, unqualified 32-character alphanumeric hostname.
The last of these carries a small but non-zero risk of colliding with a
real hostname, and there's a small but non-zero risk that this host
points to the same address as something we care about. If possible, it
would be better to not include this random-host lookup in the algorithm,
as somewhere, some day, chances are there will eventually be a
collision, causing an incomprehensible and unreproducible failure for a
user.
** Affects: cloud-init (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to cloud-init in Ubuntu.
https://bugs.launchpad.net/bugs/1088611
Title:
using random hostnames to detect dns proxies allows for false
positives
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1088611/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
