broken DNS proxying at public wireless hotspots
Trent Lloyd
lathiat at bur.st
Sun Feb 4 07:03:40 UTC 2007
Hi Joe,
On Sun, Feb 04, 2007 at 01:30:58AM -0500, Joe Abley wrote:
>
> On 4-Feb-2007, at 00:58, Trent Lloyd wrote:
>
> >The flaw here is that DNS operates over 53(UDP), last time I
> >checked SSH
> >doesn't do UDP port forwarding?
>
> In the interests of dispelling a common myth, DNS operates over both
> 53/udp and 53/tcp. However, given that a substantial portion of most
> clients' queries will likely use UDP transport, your fundamental
> point stands.
Sorry, yes, you are 100% correct in that, but as you say in practice all
client resolver queries are most likely to be over UDP :)
Cheers,
Trent
More information about the NANOG
mailing list