Commit 8fe18c05 authored by Committed by Michał KępieńBrowse files
Disable lame-ttl cache
The lame-ttl cache is implemented in ADB as per-server locked linked-list "indexed" with <qname,qtype>. This list has to be walked every time there's a new query or new record added into the lame cache. Determined attacker can use this to degrade performance of the resolver. Resolver testing has shown that disabling the lame cache has little impact on the resolver performance and it's a minimal viable defense against this kind of attack.
Showing with 9 additions and 6 deletions