Hello everyone, My LAN is behind an endian firewall box (v.1.1). I upgraded my local DNS servers (bind9) to prevent dns cache poisonning. My local DNS are configured to forward to OpenDNS servers for the "outside" servers.
When I perform a test (e.g. on doxpara website), it seems that i'm still vulnerable. I browsed this forum and upgraded dnsmasq to version 2.43, but it doesn't seem to fix my problem. It seems that the EFW box cancels the benefit of random udp source ports on the bind9 servers; Can anyone help me with this issue ? Thanks ps: I can upgrade to a newer version of EFW if necessary, but I want to be sure this will solve the problem, since it involves interrupting internet access for some time. -- View this message in context: http://www.nabble.com/EFW---DNS-cache-poisoning-flaw-tp18771635p18771635.html Sent from the efw-user mailing list archive at Nabble.com. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user
