Xiang Li from Network and Information Security Lab, Tsinghua University discovered a clever way to keep names in Deadwood’s cache after a rogue domain has been revoked. I have implemented measures to make this attack no longer feasible. The only impact is that sometimes a name can stay in the cache longer than desired. The issue only affects people using Deadwood as a fully recursive DNS server; if one uses upstream_servers and not root_servers, one will not be affected by this bug.
This issue was fixed in Deadwood 3.5.0022 released on May 7, 2022. To allow other DNS server developers ample time to fix and patch the issue, I kept a 90-day embargo. I made the issue public on August 1, 2022, after coordinating with other DNS implementors to ensure the issue has been addressed across the board before making it public.
The updated version of MaraDNS is available on the MaraDNS download page and at GitHub.
I have updated my web pages to have dark mode support in CSS. If one is seeing this page with a light text on a dark background, this means dark mode is enabled in the browser; people without dark mode enabled will see no change to the web sites.
As an aside, for people who want to view websites without dark mode support with light text and dark backgrounds, Dark Reader looks to do a really good job.
The international chess olympiad is ongoing, with well over 150 nations playing each other chess in India every day. With over 600 games being played every day, a number of interesting games have come up. Here’s an interesting game between Shirov (White) and Toczek (Black) from the second day of the olympiad.
This is how the game went:
1.e4 d6 2.d4 Nf6 3.Nc3 e5 4.Nf3 Nbd7 5.g4 Nxg4 6.Rg1 Ngf6 7.Bc4 h6 8.dxe5 dxe5 9.Be3 c6 10.Qd3 b5 11.Bb3 Qa5 12. O-O-O Ba6 13.Nd2 Rd8 14.Qf1 c5 15.Nd5 c4 16.Nxc4 bxc4 17.Bxc4 Bb7 18.Bd2 Qc5 19.Bb4 Qc8 20.Ba5 Nxd5 21.Bxd5 Ba6 22.Qh3 Nb6 23.Qh5 Rd7 24.Qxe5+ Re7 25.Qd4 Nxd5 26.Qa4+ Qd7?
28.Rxd5! 1-0
Black resigned because he could not save his queen. For example, if 28... Qxa4 then 29.Rd8# delivers checkmate.
The code and graphics to make the chess game diagram come from a variety of open source projects. There is a list of contributors and copyrights for the hard working people who made these chess diagrams possible. Also, the diagram code has a GitHub page.
Comments for blog entries can be seen in the forum.