[Dnsmasq-discuss] dnsmasq and NXNSAttack

Petr Menšík pemensik at redhat.com
Fri May 22 20:21:26 BST 2020


I think it is not, since it does not handle delegation itself. It uses
upstream resolvers to do that work for it. If upstream limits processed
redirections, it should be ok.

But that is just my personal opinion and might be wrong.

Regards,
Petr

On 5/21/20 1:26 AM, Neal P. Murphy wrote:
> Is dnsmasq vulnerable to NXNSAttack?
> 
> _______________________________________________
> Dnsmasq-discuss mailing list
> Dnsmasq-discuss at lists.thekelleys.org.uk
> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
> 

-- 
Petr Menšík
Software Engineer
Red Hat, http://www.redhat.com/
email: pemensik at redhat.com
PGP: DFCF908DB7C87E8E529925BC4931CA5B6C9FC5CB

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20200522/3ab7880e/attachment.sig>


More information about the Dnsmasq-discuss mailing list