new DNS forwarder vulnerability

Nick Hilliard nick at
Fri Mar 14 13:59:27 UTC 2014

On 14/03/2014 13:45, Mark Allman wrote:
>   - We have found 7--9% of the open resolver population---or 2-3 million
>     boxes---to be vulnerable to this cache poisoning attack.  (The
>     variance is from different runs of our experiments.)

did you characterise what dns servers / embedded kit were vulnerable?  If
so, can you share the results?


More information about the NANOG mailing list