site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

US Cable Support > Comcast HSI > [DNS] Comcast and the DNS Server flaw issue

Search Topic:
 Share Topic
Posting?
Post a:
Post a:
Links: ·Forum Rules ·Forum FAQ ·Bandwidth Limits/Congestion Management ·Copyright Infringement?
AuthorAll Replies


espaeth
Digital Plumber
Premium,MVM
join:2001-04-21
Minneapolis, MN
kudos:2
Reviews:
·Clear Wireless

reply to Alan Clegg

Re: Transaction ID is just not enough (even if 100% "random")

said by Alan Clegg :

If you have sufficient transaction ID randomness, then to a certain degree the source port randomness is just an academic bonus.

You sir, are completely incorrect.
Completely ?

I will acknowledge that I overstated on source port randomness just being a bonus. Still, the most exploitable servers are those that are still using fixed source port queries, followed by the previous bind implementations that still had limited entropy for both the source port and transaction ID.

The servers being reported with "poor" source port randomness (ie, randomness within a fixed range) but "good" for transaction ID randomness are still better off than those servers out there still susceptible to »securitytracker.com/alerts/2007/···442.html .
to forum · permalink · 2008-07-24 22:22:10 ·
Forums > US Cable Support > Comcast HSI

Wednesday, 30-May 20:40:53 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics