adam:ONE® protections against TsuNAME

TsuNAME is a name given to a vulnerability that can be used to DDoS DNS.

adam:ONE® prevented TsuNAME techniques even prior to the above responsible discovery, disclosure and patching by Google & OpenDNS.

Here’s how:

  • adam:ONE® limits the number of recursions to ten (10)
  • adam:ONE® (local LAN caching resolver service) checks against circular requests (any attempt to do so would show in your