[Dshield] UDP packets dropped from DNS server

John Groseclose iain at caradoc.org
Sun Oct 28 17:20:09 GMT 2001


At 8:23 AM +0100 10/28/01, Uros Vovcak wrote:
>No you just enable dns servers to connect...from port 53 to your dinamics
>ports from 1024 to 65535

Doing so would allow specifically configured attempts from port 53 to 
other potentially open ports - for example, a NetBus attempt from 
port 53 to port 12345 on your machines.

Not really a good idea, unless you're only allowing connections from 
the specific DNS servers you're querying. For a home user, that's not 
*too* bad. For someone running their own caching nameserver, it would 
be a real security risk, as you'd have to allow queries to *any* 
nameserver.
-- 
John Groseclose
iain at caradoc.org




More information about the list mailing list