From: Michele Vetturi (michele.vetturi@iritaly.org)
Date: Mon Feb 13 2006 - 21:27:24 EST
Julian Totzek wrote:
> Hi Group,
>
> I wonder if there is a proxy which is configurable that it rewrites every request to special DNS request and is sending and receiving on port 53 UPD/TCP. Additionally there should be a server listening on port 53 UDP answering all requests the client is sending.
>
> Background to this question is, I'm currently testing a wireless network which allows traffic on port 53 to every server. So why not tunnelling s this way! I don't want a tool where I need my own DNS server with authority of a domain and so!
>
> Cheers -j
I'm workin' about this... I'm developing two daemons which allow to
tunnelize data through DNS updates and queries.
It's called SecSyslog and it has been presented at SADFE last year. Some
modifications to the protocol allowed me to produce my thesis, presented
last tuesday. My work is mainly based upon Dan Kaminsky's researches.
And yes, with some assumptions one can transmit data without authority
on the DNS server, implementing SecSyslog with minimal differences.
My 2 cents.
-- Michele Vetturi ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:31 EDT