Project

General

Profile

Actions

Bug #12460

open

Unbound falls back to using all outgoing network interfaces if manually selected outgoing interface(s) are unavailable

Added by Viktor Gurov about 2 months ago. Updated about 1 month ago.

Status:
Pull Request Review
Priority:
Normal
Assignee:
Category:
DNS Resolver
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
22.01
Release Notes:
Default
Affected Version:
2.5.2
Affected Architecture:

Description

How to reproduce:

1) Configure OpenVPN client and assign OpenVPN interface
2) Select OpenVPN interface in `Outgoing Network Interfaces`
3) Now if OpenVPN client is disconnected, DNS Resolver creates unbound.conf without outgoing-interface: entries, i.e. outgoing interfaces = All
4) This can lead to a DNS leak

Possible solution:
- Disable forwarding and recursion ( local-zone: "." refuse ) in such case

Actions #2

Updated by Jim Pingle about 1 month ago

  • Status changed from New to Pull Request Review
  • Assignee set to Viktor Gurov
  • Target version set to 2.6.0
  • Plus Target Version set to 22.01
Actions #3

Updated by Jim Pingle about 1 month ago

  • Subject changed from unbound fallback to `All` outgoing network Interface if outgoing interfaces are not found to Unbound falls back to using all outgoing network interfaces if manually selected outgoing interface(s) are unavailable
Actions

Also available in: Atom PDF