nitter
Frank β‘
@jedisct1
9 Jul 2017
Using DNS to ban Linux users
11
30
3
64
Daniel Silverstone ππππΒ² π³οΈβππ¬π§
@dsilverstone
10 Jul 2017
So what you're saying is that OpenBSD doesn't reject invalid DNS names?
2
Frank β‘
@jedisct1
10 Jul 2017
Just like you can ban resolver implementations by leveraging their hardcoded limits on the number of indirections in compressed names.
1
Daniel Silverstone ππππΒ² π³οΈβππ¬π§
@dsilverstone
10 Jul 2017
Replying to
@jedisct1
@jogbert
So actually you're banning glibc not Linux?
Jul 10, 2017 Β· 9:23 AM UTC
2
Frank β‘
@jedisct1
10 Jul 2017
Replying to
@dsilverstone
@jogbert
Donβt you see the previous tweets? Yes, this is glibc. Musl behaves like other systems.
1
Daniel Silverstone ππππΒ² π³οΈβππ¬π§
@dsilverstone
10 Jul 2017
Sorry, Whoever I found you from didn't quote anything else and I was a bad human and didn't go digging for context :/
Frank β‘
@jedisct1
10 Jul 2017
Replying to
@dsilverstone
@jogbert
You can block all OpenDNS users with completely legitimate DNS responses. Not a bug, rather an implementation-specific behavior.
