www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

ZeroShell DNS Amplification attack protect

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
meloun



Joined: 31 Mar 2013
Posts: 10

PostPosted: Mon Jul 15, 2013 12:00 pm    Post subject: ZeroShell DNS Amplification attack protect Reply with quote

Discovered a vulnerability in ZeroShell makes it possible to carry out attacks DNS Amplification.

DNS server ZeroShell initially configured to accept recursive queries from any IP.
The attacker sends a recursive query to the short DNS server with spoofed source IP, the answer is much larger in size are sent to the address of the victim. With a massive attack heavily loaded outbound channel.

The solution - a ban recursive queries from external IP.
Add to the NETWORK -> DNS -> Options parameter:
Code:
allow-recursion { localhost; 192.168.0.0/16; 10.0.0.0/8; 172.16.0.0/12; };

This option enables recursive queries only from private LAN subnets 192.168.0.0.16, 10.0.0.0 / 8, 172.16.0.0/12.
If the router serves other subnets, add them.

-
Best regards, Dmitry [Meloun] Melnichenko.
Back to top
View user's profile Send private message
fulvio
Site Admin


Joined: 01 Nov 2006
Posts: 1071

PostPosted: Sat Jul 20, 2013 12:25 pm    Post subject: Reply with quote

Hi,
the new release 2.0.RC3 solve sthe issue.

Regards
Fulvio
Back to top
View user's profile Send private message Send e-mail
micampo



Joined: 24 Dec 2008
Posts: 61

PostPosted: Sat Sep 07, 2013 9:34 pm    Post subject: Reply with quote

can you please illustrate some vulnerability?
Back to top
View user's profile Send private message
meloun



Joined: 31 Mar 2013
Posts: 10

PostPosted: Fri Sep 27, 2013 9:07 am    Post subject: Reply with quote

micampo wrote:
can you please illustrate some vulnerability?


example illustrating http://www.youtube.com/watch?v=xTKjHWkDwP0
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group