Thanks for the heads-up. I just checked in code to the git repo to fix this.
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=b059c96dc69dfe3055c5b32b078a05c53b11ebb3
Cheers,
Simon.
On 30/04/15 02:59, Jordan Milne wrote:
dnsmasq correctly filters A records containing RFC1918
dnsmasq correctly filters A records containing RFC1918 addresses like
192.168.2.1, however, it doesn't check records containing IPv4-mapped
IPv6 addresses.
For example, enable DNS rebinding prevention, and do:
$ host router.saynotolinux.com
nothing will be returned, but
$ host