Home | FAQ | Contact | Privacy Policy
US-CERT
Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information
 

 View Notes By
Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric

 Other Documents
Technical Alerts

Technical Bulletins

Alerts

Security Tips

MaraDNS Information for VU#800113

Date Notified:
Date Updated:2008-07-10
Statement Date:2008-06-27
Status Summary:Not Vulnerable

Vendor Statement

MaraDNS uses a secure random number generator to generate both the query
ID and the port to bind to.  In more detail, MaraDNS uses information from
the file /dev/urandom as a random seed to generate a cryptographic key.
Using a variant of AES, MaraDNS has 16 bits of entropy for the query ID
and 12 bits of entropy for the source port.

Deadwood, a from-the-ground-up reimplementation of MaraDNS also uses a secure
random number generator.  Instead of using an AES variant, Deadwood uses a
stream cipher called "Radio Gatun" (a derivative of Panama) as the random
number generator.

Note that the Windows port, if improperly configured, will have possible
security issues because there is not a convenient pool of random numbers
on that platform.

So, in summary, I am aware of this security problem and have gone to some
effort make sure MaraDNS (and Deadwood) does not have this issue.

Vendor Information

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

Produced 2009 by US-CERT, a government organization
Disclaimers and copyright information