Subject: Re: NetBSD vs. idiot hotel wireless
To: Kirk Strauser <kirk@strauser.com>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: netbsd-users
Date: 03/17/2005 15:37:42
In message <200503171412.01479.kirk@strauser.com>, Kirk Strauser writes:
>--nextPart1357112.8p6gTFX97p
>Content-Type: text/plain;
>  charset="iso-8859-1"
>Content-Transfer-Encoding: quoted-printable
>Content-Disposition: inline
>
>On Tuesday 15 March 2005 22:27, Steven M. Bellovin wrote:
>
>> The hotel I'm staying at has a new and stupider-than-usual setup:  its
>> DNS intercept mechanism replies from a different IP address *and port
>> number* than the one to which NetBSD sent a query.
>
>One possibility might be to install BIND and add a "forwarders" clause to=20
>named.conf like:
>
>forwarders {
>    hotel.dns.ip.address port 1337;
>}
>
>and then point resolv.conf to 127.0.0.1.  That's not exactly an ideal setup=
>,=20
>but apparently neither is your hotel's.

I should have tried that.  Of course, I don't know if the stupid thing 
actually listened on the bogus port, as opposed to sending on it.

		--Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb