[nsd-users] NSD 4.1.11

Paul Wouters paul at nohats.ca
Wed Aug 10 04:03:33 CEST 2016


On Tue, 9 Aug 2016, W.C.A. Wijngaards wrote:

> This release contains a patch for the unlimited AXFR vulnerability; with
> a config option to limit AXFR sizes.

If this is a known vulnerability, is there a reason why the default
config has not enabled any kind of limits? This release is now just
as vulnerable as before because no upper limits have actually been
enabled.

Paul


More information about the nsd-users mailing list