Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
BLACK FRIDAY DEAL: Trust the World's Fastest VPN with Your Internet Security & Freedom--A Lifetime Subscription of PureVPN at $48 with coupon code "BFRIDAY20" ×
Security

Submission + - Dan Bernstein confirms security issue in djbdns (securityandthe.net)

secmartin writes: "Dan Bernstein has just admitted that a security issue has been found in the djbdns software, one of most popular alternatives for the BIND nameserver. As part of the djbdns security guarantee, $1000 will be paid to Matthew Dempsky, the researcher that found the bug.

The bug allows a nameserver running djbdns to be poisoned using just a single packet. Other researchers have found a separate issue that allows dnscache, the DNS cache that is also part of the djbdns package, to be poisoned within just 18 minutes when using the default configuration. Anyone using djbdns is strongly encouraged to patch their servers immediately."

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Dan Bernstein confirms security issue in djbdns

Comments Filter:

The computer is to the information industry roughly what the central power station is to the electrical industry. -- Peter Drucker

Working...