Resources for DNS Security Information

Home for BIND and DHCPD:

DNS Security Slides by Cricket Liu, coauthor of DNS and BIND (aka “The Grasshopper Book”):

FAQ from

DNS Security Paper by Craig Rowland:

Some Interesting RFCs (see

1035 (General DNS Specs)
1183 (Additional Resource Record Specifications)
2308 (Negative Caching)
2136 (Dynamic Updates)
1996 (DNS Notify)
2535 (DNS Security Extensions)

Some DNS/BIND Security Advisories (see

CA-99-14: “Multiple Vulnerabilities in BIND”

CA-2000-03: “Continuing Compromises of DNS Servers”

CA-98.05: “Multiple Vulnerabilities in BIND”

CA-97.22: “BIND” (cache-poisoning)