[1911] in linux-security and linux-alert archive
[linux-security] Re: Linux and IPFWADM
daemon@ATHENA.MIT.EDU (Christopher Hicks)
Sat Jun 20 02:40:30 1998
Date: Fri, 19 Jun 1998 11:35:20 -0400 (EDT)
From: Christopher Hicks <chicks@chicks.net>
To: linux-security@redhat.com, Bernhard Weisshuhn <bkw@weisshuhn.de>
In-Reply-To: <19980617094542.08988@intranet.weisshuhn.de>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
On Wed, 17 Jun 1998, Bernhard Weisshuhn wrote:
> [mod: I thought only zone transfers were done using tcp. Anybody know
> for sure? (Yes, nslookup also uses tcp if you use the "ls" command, but
> it just pretends being another named doing a zone transfer) -- REW]
It took me a moment to recall when this happens. But it most often
happens during MX lookups. If someone has a lot of MX's, then the UDP
packet will indicate that it is truncated. named will then initiate a TCP
connection to the same name server.
Now - a much more interesting question in my mind - is what named will do
if it can't get the TCP connection? Will it quit? Will it try another
valid name server for the domain? Will it return partial data if it can't
talk to any of the name servers because TCP isn't allowed to any of them?
</chris>
--
"The only thing more frightening than a programmer with a screwdriver
or a hardware enginner with a program is a user with wire cutters and
the root password." - Elizabeth Zwicky
"The only thing that is in the same league with the user who has the root
password is a construction grunt holding the unterminated end of a cat5
cable with a quizical look on their face." - chicks
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null