LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Recursive servers, but not proxy servers, affected.

Recursive servers, but not proxy servers, affected.

Posted Jul 8, 2008 22:45 UTC (Tue) by jebba (✭ supporter ✭, #4439)
In reply to: Recursive servers, but not proxy servers, affected. by endecotp
Parent article: Dan Kaminsky Discovers Fundamental Issue In DNS: Massive Multivendor Patch Released (Securosis.com) 

It doesn't say anything about djbdns either, except to link to some of his papers written
years back. Some commenter said it wasn't vuln due to port randomization.

(Log in to post comments)

Recursive servers, but not proxy servers, affected.

Posted Jul 8, 2008 23:34 UTC (Tue) by rfunk (subscriber, #4054) [Link] 

Dan Kaminsky has confirmed that djbdns is not vulnerable due to its source 
port randomization.

Recursive servers, but not proxy servers, affected.

Posted Jul 9, 2008 23:07 UTC (Wed) by jebba (✭ supporter ✭, #4439) [Link] 

As a side note, djbdns (and related programs) are now all under the public domain (finally!).
I hadn't heard that good news until today. :)

http://cr.yp.to/distributors.html

"What are the distribution terms for djbdns?
2007.12.28: I hereby place the djbdns package (in particular, djbdns-1.05.tar.gz, with MD5
checksum 3147c5cd56832aa3b41955c7a51cbeb2) into the public domain. The package is no longer
copyrighted."

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds