[Bug 1306646] Re: Prevent open recursive DNS server with dnsmasq

Robie Basak 1306646 at bugs.launchpad.net
Fri Apr 11 15:16:17 UTC 2014


Thank you for taking the time to report this bug and helping to make
Ubuntu better.

Looks like 2.69 was released on 9 April. We have been in feature freeze
for Trusty since 20 Februrary, and final freeze was yesterday, so I
don't think that we'll be able to do this in time for Trusty. But as
there is a security element here, I've asked a member of the security
team for input.

I see that 2.69 has been uploaded to Debian unstable and includes use of
--local-service by default, so this should get automatically synced to
Ubuntu in time for the next release.

** Bug watch added: Debian Bug tracker #732610
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732610

** Also affects: dnsmasq (Debian) via
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732610
   Importance: Unknown
       Status: Unknown

** Summary changed:

- Prevent open recursive DNS server with dnsmasq
+ dnsmasq provides recursive answers to the Internet by default

** Changed in: dnsmasq (Ubuntu)
       Status: New => Triaged

** Changed in: dnsmasq (Ubuntu)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to dnsmasq in Ubuntu.
https://bugs.launchpad.net/bugs/1306646

Title:
  dnsmasq provides recursive answers to the Internet by default

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1306646/+subscriptions



More information about the Ubuntu-server-bugs mailing list