Dailydave mailing list archives

DNS Guess 2 for the day

From: Dave Aitel <dave () immunityinc com>
Date: Sat, 12 Jul 2008 16:56:35 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

So you don't really want to spoof the client. You want to spoof the 
resolver. So you pretend to be a resolver below it, and pass it along a 
fake request (with a TXID), and then immediately send him the spoofed 
response (since you specified the TXID) and his port is known. He then 
sends you the response (which is the one you spoofed him) and is poisoned.

- -dave

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIeRqDtehAhL0gheoRAjo2AJ9bbk3v6CmajHC3h+vPGbpa4Z7o+QCfR1jf
CTakU4SaHHnQiwIh9fUUwsA=
=iZ/k
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

DNS Guess 2 for the day Dave Aitel (Jul 12)
- <Possible follow-ups>
- Re: DNS Guess 2 for the day Petja van der Lek (Jul 13)
  - Re: DNS Guess 2 for the day Parity (Jul 13)
  - Re: DNS Guess 2 for the day Paul Vixie (Jul 13)
- Re: DNS Guess 2 for the day piggly wiggly (Jul 13)
  - Re: DNS Guess 2 for the day Jon Oberheide (Jul 14)
    - Re: DNS Guess 2 for the day Marc Heuse (Jul 14)
  - Re: DNS Guess 2 for the day Lee Brotherston (Jul 14)