DNS cache poisoning attacks return due to Linux weakness

DNS cache poisoning hack discovered by Kaminsky in 2008 has returned due to how Linux ICMP rate limiter defaults to 1,000 requests/second. A side-channel attack can be used to deduce open ports and pollute DNS resolvers.

Avoid caches shared with strangers. Do not use third party recursive DNS.