[98483] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: large organization nameservers sending icmp packets to dns

daemon@ATHENA.MIT.EDU (Doug Barton)
Thu Aug 9 18:54:15 2007

Date: Thu, 9 Aug 2007 15:53:12 -0700 (PDT)
From: Doug Barton <dougb@dougbarton.us>
To: David Conrad <drc@virtualized.org>
cc: Jamie Bowden <jamie@photon.com>, Nanog <nanog@nanog.org>
In-Reply-To: <59A51169-3B66-4D6C-B27E-2E46DF8A9633@virtualized.org>
Errors-To: owner-nanog@merit.edu


On Wed, 8 Aug 2007, David Conrad wrote:

> How many bytes of shell code can you stuff in a 512 byte DNS UDP packet?

How many bytes of shell code can you stuff into a 4096 byte EDNS0 UDP 
packet? :)

> P.S. I still think blocking TCP/53 is stupid.

Agreed.

-- 

 	If you're never wrong, you're not trying hard enough


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[98483] in North American Network Operators' Group

Re: large organization nameservers sending icmp packets to dns

daemon@ATHENA.MIT.EDU (Doug Barton)Thu Aug 9 18:54:15 2007

daemon@ATHENA.MIT.EDU (Doug Barton)
Thu Aug 9 18:54:15 2007