Page 1 of 4 123 ... LastLast
Results 1 to 10 of 34

Thread: 12.04 running DNSMASQ by default

  1. #1
    Join Date
    Jun 2011
    Location
    The Shadow Gallery
    Beans
    6,804

    12.04 running DNSMASQ by default

    in 12.04 dnsmasq is now running by default due to being hardcoded into network manager.

    Potentially bad idea (ever heard of DNS cache poisoning or MITM attacks ?)

    12.04 Release Notes

    5th Bullet Point.

    Its built into Network manager now.

    Running a local DNS caching server where your resolver is localhost or 127.0.01 may speed up DNS resolution but may also pose potential security risks.

    You may do the following to disable it if you dont want it used, though it doesnt appear it to be caching by default (you can test with the dig command)


    so


    Code:
    sudo nano /etc/NetworkManager/NetworkManager.conf
    (the above is case sensitive so capital N)

    and comment out the

    Code:
    dns=dnsmasq
    line then do a


    Code:
    sudo restart network-manager
    Peace
    Last edited by haqking; April 29th, 2012 at 04:13 PM.
    Feel Free to Bitcoin Tip: 135Rp4pwwYTHEJ4u8bxKaDQiC91N9LUoV2

    Backtrack - Giving machine guns to monkeys since 2006
    Kali-Linux - Adding a grenade launcher to the machine guns since 2013

  2. #2
    Join Date
    Jun 2011
    Location
    Atlanta Georgia
    Beans
    1,771
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: 12.04 running DNSMASQ by default

    *shakes head*

    Yeah...Umm I am a little disappointed in this, all I can say is that Canonical was on drugs with this one.

    That's good advice haqking

  3. #3
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: 12.04 running DNSMASQ by default

    I'm not really sure why they decided to do this anyhow, seeing as DNS lookups are pretty quick to begin with and most web browsers prefetch and cache addresses.

    Thanks for the workaround, haqking.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  4. #4
    Join Date
    Sep 2006
    Beans
    5

    Re: 12.04 running DNSMASQ by default

    Dnsmasq is running with caching disabled. There is no security risk.

  5. #5
    Join Date
    Jun 2011
    Location
    Atlanta Georgia
    Beans
    1,771
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: 12.04 running DNSMASQ by default

    Quote Originally Posted by mdeslaur View Post
    Dnsmasq is running with caching disabled. There is no security risk.
    Source on this?

    EDIT : Nevermind found one for you : http://www.stgraber.org/2012/02/24/dns-in-ubuntu-12-04/

    If that is the case -- then I have had my faith slightly restored, though I still think it was a stupid move. There are other issues with dnsmasq *cough* TFTP/pxe...
    Last edited by Dangertux; April 29th, 2012 at 04:39 AM.

  6. #6
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: 12.04 running DNSMASQ by default

    Quote Originally Posted by Dangertux View Post
    Source on this?

    EDIT : Nevermind found one for you : http://www.stgraber.org/2012/02/24/dns-in-ubuntu-12-04/

    If that is the case -- then I have had my faith slightly restored, though I still think it was a stupid move. There are other issues with dnsmasq *cough* TFTP/pxe...
    Saw it mentioned here:

    http://www.stgraber.org/2012/02/24/dns-in-ubuntu-12-04/

    It's at bullet number 5 in the page Haqking linked to.

    EDIT: Ninja'd me.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  7. #7
    Join Date
    Sep 2006
    Beans
    5

    Re: 12.04 running DNSMASQ by default

    If you believe there are other security issues with the use of dnsmasq, please file a bug detailing the issue and the exact attack scenario. Thanks.

  8. #8
    Join Date
    Feb 2011
    Location
    new york state
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: 12.04 running DNSMASQ by default

    after reading this
    https://bugs.launchpad.net/ubuntu/+s...sp/+bug/955785
    and
    https://bugs.launchpad.net/ubuntu/+s...er/+bug/959037

    I wanted too take it down as it is a ugly hack and there is movement all ready
    Last edited by josephmills; April 29th, 2012 at 08:00 AM.
    Power tends to corrupt, and absolute power corrupts absolutely. Great men are almost always bad men, even when they exercise influence and not authority

  9. #9
    Join Date
    Mar 2007
    Beans
    51

    Re: WARNING: 12.04 running DNSMASQ by default

    Thanks. Upon upgrade I could not resolve DNS at all with this. I had previously configured unbound for local DNS to get by stupid Time Warner's NXDOMAIN hijacking. I was scratching my head trying to figure out how to stop dnsmasq from starting.

  10. #10
    Join Date
    Sep 2011
    Beans
    1,531

    Re: 12.04 running DNSMASQ by default

    Quote Originally Posted by Dangertux View Post
    Source on this?

    EDIT : Nevermind found one for you : http://www.stgraber.org/2012/02/24/dns-in-ubuntu-12-04/

    If that is the case -- then I have had my faith slightly restored, though I still think it was a stupid move. There are other issues with dnsmasq *cough* TFTP/pxe...
    OK, so help out us humans that don't really understand the details of how DNS cache poisoning or MITM attacks are carried out. Have you downgraded the threat level based on that link? Or is it still significant enough that everyone should implement the workaround?

Page 1 of 4 123 ... LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •