As usual, the djb fanboys chose the wrong way: following stupid glibc advice https://www.reddit.com/r/sysadmin/comments/4678yj/mitigating_cve20157547_with_djbdns_dnscache/ … #DNS #CVE-2015-7547
@vavrusam @PowerDNS_Bert @npua @bortzmeyer It doesn’t. That’s a pointless mitigation. Patch your junk and run a local resolver.
-
-
@jedisct1@vavrusam@npua@bortzmeyer source please. I have patched "my junk". I need to know what the reality is with this issue. -
@PowerDNS_Bert@jedisct1@npua@bortzmeyer If I understand it right, you can get first 2k ans over TCP, then RST/fail other to force retry - 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.