[10699] in bugtraq
Re: weaknesses in dns label decoding,
daemon@ATHENA.MIT.EDU (Pavel Kankovsky)
Wed Jun 2 18:23:36 1999
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <19990602225645.4257.0@argo.troja.mff.cuni.cz>
Date: Wed, 2 Jun 1999 23:00:27 +0200
Reply-To: Pavel Kankovsky <peak@ARGO.TROJA.MFF.CUNI.CZ>
From: Pavel Kankovsky <peak@ARGO.TROJA.MFF.CUNI.CZ>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.4.05.9905311746110.18771-100000@dark.sinister.com>
On Mon, 31 May 1999, bobk wrote:
> Another thing to remember is that it is possible to put ABSOLUTELY
> ANYTHING inside a DNS domain name. This includes whitespace, control
> characters, and even NULL.
Use BIND's check-names option to refuse illegal answers.
--Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ]
"NSA GCHQ KGB CIA nuclear conspiration war weapon spy agent... Hi Echelon!"
