willwhui/客户端Ubuntu的DNS解析防污染（废）

Last active September 14, 2017 14:21

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/willwhui/7283897f6a50ab169043d00bb83bdedb.js"></script>
Save willwhui/7283897f6a50ab169043d00bb83bdedb to your computer and use it in GitHub Desktop.

Download ZIP

客户端Ubuntu的DNS解析防污染（废）

Raw

客户端Ubuntu的DNS解析防污染（废）

客户端Ubuntu的DNS解析防污染

Author

willwhui commented Jun 8, 2017 •

edited

Loading

继续排查：

sudo tcpdump -i any host localhost
可见大量如下结果：

17:56:37.657024 IP localhost.1088 > localhost.50016: Flags [.], ack 234, win 350, options [nop,nop,TS val 156575 ecr 156575], length 0
17:56:37.660530 IP localhost.1088 > localhost.50020: Flags [F.], seq 13, ack 229, win 350, options [nop,nop,TS val 156576 ecr 156529], length 0
17:56:37.660703 IP localhost.50020 > localhost.1088: Flags [F.], seq 229, ack 14, win 342, options [nop,nop,TS val 156576 ecr 156576], length 0

sudo tcpdump -i any dst localhost and tcp port 1088
可见大量如下结果：
21:43:33.008249 IP localhost.51686 > localhost.1088: Flags [F.], seq 223, ack 14, win 342, options [nop,nop,TS val 273141 ecr 273141], length 0
21:43:33.008262 IP localhost.1088 > localhost.51686: Flags [.], ack 224, win 350, options [nop,nop,TS val 273141 ecr 273141], length 0
21:43:39.989639 IP localhost.1088 > localhost.51618: Flags [F.], seq 13, ack 229, win 350, options [nop,nop,TS val 274886 ecr 272385], length 0
21:43:39.989817 IP localhost.51618 > localhost.1088: Flags [F.], seq 229, ack 14, win 342, options [nop,nop,TS val 274886 ecr 274886], length 0
21:43:39.989835 IP localhost.1088 > localhost.51618: Flags [.], ack 230, win 350, options [nop,nop,TS val 274886 ecr 274886], length 0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment