User: Password:
Subscribe / Log in / New account

Some stupid ideas

Some stupid ideas

Posted Aug 14, 2008 10:51 UTC (Thu) by rvfh (subscriber, #31018)
In reply to: Some stupid ideas by NAR
Parent article: Details of the DNS flaw revealed

In this case, one could ask for each value (or only the ones under attack) twice:
- ask value, return to requester with short TTL (a few seconds)
- wait a bit
- ask value again, if matches use given TTL (or limit it to a few hours)

Anyway, it seems the solution is in the repetition, to decrease the probability of success of
the attack.

(Log in to post comments)

Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds