Firewalls: Is DNS push possible?

Firewalls
(December 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Is DNS push possible?
From:	Per . Ahren @ medcom . se
Date:	Tue, 19 Dec 95 12:06:53 +0000
To:	Firewalls @ GreatCircle . COM

I like to know if it is safe when you have a internel DNS or is it
possible for someone (a cracker) put up a machine that PUSH data into
a server in the heirarchy even thoue its not known in the heirarchy
and without the server requestes for it?

It seems to me that the mechanism of DNS is that when a machine needs
new data it GETS IT with a _named-xfer_ zone transfer (zone get) call
is this the only way or not!

(You could probobly push out some packets in that moment but then
you have to know when the transfer is running)

                      .
                     / \
                    /   \
                   /    se
                          \
                       acmecorp
                      /   !    \
                     /    !     \
Cracker ----->    sales  dev   tech
                  /       !        \
                 /        !         \


Pär Ahrén, Technical Consultant
Media Communications Eur AB (publ)

Phone:  +46 8 21 77 88
Fax:    +46 8 21 95 05
Mobile: +46 708 76 01 30
VIDEO:  +46 8 440 22 55 (H.320)
E-Mail: pera @
 medcom .
 se
Web:    http://www.medcom.se/~pera

Indexed By Date	Previous:	Re: Does anyone else see this as a problem? From: Bill Husler <bhusler @ community . net>
Indexed By Date	Next:	BOOTP From: julian thomas <julian @ studio . demon . co . uk>
Indexed By Thread	Previous:	Re: Does anyone else see this as a problem? From: "Paul D. Robertson" <proberts @ clark . net>
Indexed By Thread	Next:	BOOTP From: julian thomas <julian @ studio . demon . co . uk>