diff options
author | Tom Gundersen <teg@jklm.no> | 2015-07-09 14:19:55 +0200 |
---|---|---|
committer | Tom Gundersen <teg@jklm.no> | 2015-07-14 18:50:57 +0200 |
commit | d20b1667dbab8bccf69735523a0d5fc645e81b80 (patch) | |
tree | 941c5b59eeabd49bdccd612d0aee0c48ea588024 /TODO | |
parent | 29815b6c608b836cada5e349d06a96b63eaa65f3 (diff) |
resolved: use one UDP socket per transaction
We used to have one global socket, use one per transaction instead. This
has the side-effect of giving us a random UDP port per transaction, and
hence increasing the entropy and making cache poisoining significantly
harder to achieve.
We still reuse the same port number for packets belonging to the same
transaction (resent packets).
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 1 |
1 files changed, 0 insertions, 1 deletions
@@ -353,7 +353,6 @@ Features: - edns0 - dname - cname on PTR (?) - - maybe randomize DNS UDP source ports * Allow multiple ExecStart= for all Type= settings, so that we can cover rescue.service nicely |