[Pdns-users] PowerDNS products not vulnerable to CVE-2015-0235

2015-01-27 Thread bert hubert
Hi everyone, A brief note for you, your auditors & other folks worrying about security: PowerDNS products are note vulnerable to CVE-2015-0235. Our single use of gethostbyname() has been audited to be no risk as the parameter with which it is called is static (gethostbyname("a.root-servers.net"))

Re: [Pdns-users] pdns-recursor works but pdns discards responses

2015-01-27 Thread rooster
> Hi, > > We start with pdns_recursor and then forward some to pdns. We had your > setup with pdns_recursor behind pdns and had some issues with pdns >= 3. > According to the developers that is not really supported. I do not know > if what is happening to you is similar. > > Regards, > Ken Than

Re: [Pdns-users] High latency on recursion without cache

2015-01-27 Thread Ciro Iriarte
2015-01-27 13:21 GMT-03:00 Ciro Iriarte : > 2015-01-27 6:59 GMT-03:00 bert hubert : > > On Sun, Jan 25, 2015 at 10:33:34AM -0300, Ciro Iriarte wrote: >> > Also, the test traffic was stopped, so the trace file should be complete >> > and cleaner!. >> >> Ciro, >> >> I don't see anything that is wron

Re: [Pdns-users] High latency on recursion without cache

2015-01-27 Thread Ciro Iriarte
2015-01-27 6:59 GMT-03:00 bert hubert : > On Sun, Jan 25, 2015 at 10:33:34AM -0300, Ciro Iriarte wrote: > > Also, the test traffic was stopped, so the trace file should be complete > > and cleaner!. > > Ciro, > > I don't see anything that is wrong here. From a cold cache, it takes 11 > queries to

Re: [Pdns-users] pdns-recursor works but pdns discards responses

2015-01-27 Thread k...@rice.edu
On Tue, Jan 27, 2015 at 11:22:28AM +0100, sth...@nethelp.no wrote: > > I have pdns-recursor and pdns on the same host and port but on > > different IP$,1rys. When I query pdns and it can not answer, so it passes > > the query on to pdns-recursor, which then responds with the answer but then

Re: [Pdns-users] pdns-recursor works but pdns discards responses

2015-01-27 Thread rooster
> On 2015-01-27, at 2:22 AM, sth...@nethelp.no wrote: > > Can't speak for pdns. However, we have pdns_recursor and BIND running > on the same host (same port 53, different IPs), with pdns_recursor > forwarding some queries to BIND. Works without problems for us. Ya, I am sure I had it working

Re: [Pdns-users] pdns-recursor works but pdns discards responses

2015-01-27 Thread sthaug
> I have pdns-recursor and pdns on the same host and port but on > different IP$,1ry(Bs. When I query pdns and it can not answer, so it passes > the query on to pdns-recursor, which then responds with the answer but then > pdns discards the packets. What did I do wrong? I have tried this

Re: [Pdns-users] High latency on recursion without cache

2015-01-27 Thread bert hubert
On Sun, Jan 25, 2015 at 10:33:34AM -0300, Ciro Iriarte wrote: > Also, the test traffic was stopped, so the trace file should be complete > and cleaner!. Ciro, I don't see anything that is wrong here. From a cold cache, it takes 11 queries to resolve 2.centos.pool.ntp.org. Your network used up th