jueves, 26 de julio de 2007

OpenBSD & BIND 9 cache poisoning

when BIND 9 was first imported into OpenBSD, we decided not to use the default ID generation algorithm (LFSR, Linear Feedback Shift Register) but to use a more proven algorithm (LCG, Linear Congruential Generator) instead. thanks to this wise decision, the BIND 9 shipped with OpenBSD does not have this weakness.

the proactive security of OpenBSD strikes again,

No hay comentarios: