Re: DNS Rebinding Prevention for the Weak Host Model Attacks

, Bradley Falzon wrote: bind-users, In light of Craig Heffner's recent Black Hat talk (here: https://media.blackhat.com/bh-us-10/whitepapers/Heffner/BlackHat-USA-2010-Heffner-How-to-Hack-Millions-of-Routers-wp.pdf and here: http://rebind.googlecode.com) I would like to propose a possible solution

Re: DNS Rebinding Prevention for the Weak Host Model Attacks

On Wed, Aug 18, 2010 at 1:01 AM, Florian Weimer fwei...@bfk.de wrote: * Bradley Falzon: Craig Heffner's version of the DNS Rebinding attack, similar to all DNS Rebinding attacks, requires the DNS Servers to respond with an Attackers IP Address as well as the Victims IP Address, in a typical

Re: DNS Rebinding Prevention for the Weak Host Model Attacks

On Wed, Aug 18, 2010 at 1:05 AM, Phil Mayers p.may...@imperial.ac.uk wrote: On 08/17/2010 04:31 PM, Florian Weimer wrote: * Bradley Falzon: Craig Heffner's version of the DNS Rebinding attack, similar to all DNS Rebinding attacks, requires the DNS Servers to respond with an Attackers IP

DNS Rebinding Prevention for the Weak Host Model Attacks

is minimal. What are your thoughts on this ? What could these protection break the legitimate use for ? -- Bradley Falzon b...@teambrad.net ___ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users