#11635 NORM xs-0.7: Allow bind to use random ports on XS for queries
Zarro Boogs per Child
bugtracker at laptop.org
Wed Feb 15 12:32:59 EST 2012
#11635: Allow bind to use random ports on XS for queries
---------------------------+------------------------------------------------
Reporter: greenfeld | Owner: martin.langhoff
Type: defect | Status: new
Priority: normal | Milestone: xs-0.7
Component: school server | Version: Development build as of this date
Keywords: | Next_action: diagnose
Verified: 0 | Deployment_affected:
Blockedby: | Blocking:
---------------------------+------------------------------------------------
I agree with comment 2 of #7655 ; using one port makes it much easier
forge DNS replies.
We should remove the query-source statements found in /etc/named-xs.conf,
or at least comment them out with the explanation that if you really need
to do this, you are creating a security risk.
Seen in XS-0.7 Beta 1.
--
Ticket URL: <http://dev.laptop.org/ticket/11635>
One Laptop Per Child <http://laptop.org/>
OLPC bug tracking system
More information about the Bugs
mailing list