Bugtraq mailing list archives

Re: BIND Nuking

From: tqbf () ENTERACT COM (Thomas H. Ptacek)
Date: Tue, 29 Jul 1997 20:38:04 -0500

when executed as "bind_nuke bogus.org" on a host, that bogus.org's
primary NS is configured to accept updates from, will cause named
to silently die. Nothing in the logs, nothing on the console.


... and of course, we all realize that there is no such thing as a BIND
denial-of-service-only attack. Anything that can cause an arbitrary
nameserver to die, or even not answer queries for a significant amount of
time, allows for trivial brute-force ID-guessing attacks.

Until DNSSEC is fully deployed on the net, or the BIND maintainers
integrate real ID-guessing countermeasures, the stability of the BIND
named service is security-critical.

Just some food for thought.

----------------
Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf () enteract com]
----------------
"If you're so special, why aren't you dead?"

Current thread:

Re: CPSR 7: IRIX WWW Server Thomas Walter (Jul 24)
- Re: CPSR 7: IRIX WWW Server Aaron Bornstein (Jul 24)
- Security hole in mgetty+sendfax Gert Doering (Jul 24)
  - BIND Nuking Aveek Datta (Jul 24)
    - Re: BIND Nuking Thomas H. Ptacek (Jul 29)
    - ANNOUNCE: inn-1.5.1sec (fwd) Christopher Samuel (Jul 30)
  - Re: Security hole in mgetty+sendfax Gert Doering (Jul 25)
  - BIND Nuking Nicolas Dubee (Jul 25)
    - Re: your mail Ariel Biener (Jul 25)
    - Re: request-route Zoltan Hidvegi (Jul 28)
    - Re: request-route Eric Bennett (Jul 29)
    - Re: request-route John Macdonald (Jul 29)
    - Re: request-route Kragen Sitaker (Jul 30)
    - Re: request-route John Macdonald (Jul 31)
    - perl fingerd stupidity Chris Terry (Jul 31)

(Thread continues...)