Hi,
This item in the changelog (item of aug 4):
* This makes the stream of generated query-IDs from any new c-ares process
be an identical and predictable sequence of IDs.
made me wonder if this isn't a security issue in the implementation?
Together with this entry (aug 25):
This is one form of a DNS cache poisoning attack.
this may warrant a new release, even if its a bit early.
Thanx,
Jaap
Received on 2008-08-26