Re: International DNS compromise?

From: Danny (nocmonkey_at_gmail.com)
Date: 08/06/04

  • Next message: Seth Breidbart: "Re: [Full-Disclosure] Clear text password exposure in Datakey's tokens and smartcards"
    Date: Fri, 6 Aug 2004 15:12:17 -0400
    To: "Troy K." <tjk@tksoft.com>
    
    

    On Thu, 5 Aug 2004 10:49:39 -0700 (PDT), Troy <tjk@tksoft.com> wrote:
    > It's probably the ISP you are using.
    > They are intercepting DNS requests and returning their
    > own replies. It could be something malicious, but it could
    > just as well be the ISP saving bandwidth by caching DNS queries.

    I have never heard of an ISP which does not cache (Bind does by
    default) DNS queries. If they did not, their DNS servers would be
    constantly hitting the root servers, which would be horribly
    inconsiderate.

    > If they cache DNS queries they probably cache www queries as
    > well.

    See my last comment.

    ...D


  • Next message: Seth Breidbart: "Re: [Full-Disclosure] Clear text password exposure in Datakey's tokens and smartcards"