Insecure Dependency in Net::DNS with Cygwin (WAS: Cygwin, win98, SA, Perl IO::Socket (Insecure dependency))
Rafael Kitover
caelum@debian.org
Wed Jan 28 19:14:00 GMT 2004
Here's some information about a bug with Net::DNS when running under taint
mode, previously reported here:
http://www.cygwin.com/ml/cygwin/2004-01/msg01062.html
------------------------
#!/usr/bin/perl -T
use strict;
use warnings;
use Net::DNS;
use Carp;
$SIG{__DIE__} = sub { confess @_ };
my $res = Net::DNS::Resolver->new(debug => 1);
my @mx = mx($res, "customoffers.com");
------------------------
The $SIG{__DIE__} generates a backtrace, the debug output and backtrace are
attached to this message.
I've tried the above script both with the CPAN version of Net::DNS and this CVS
snapshot:
http://www.net-dns.org/snaps/2004/01/Net-DNS-2004-01-28.tar.gz
It seems like Net::DNS is failing to get a packet it likes back from a UDP
query (although the packet looks ok?) and then tries to send a TCP query using
some data coming from the failed UDP query, or something along those lines...
Sending a report through the form on http://www.net-dns.org/ as well.
--
Rafael
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: net-dns-out.txt
URL: <http://cygwin.com/pipermail/cygwin/attachments/20040128/0f5aa5cc/attachment.txt>
-------------- next part --------------
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/
More information about the Cygwin
mailing list