Use dns.lookup over dns.resolve4 in IPTools.dnsblQuery

This helps prevent DNS poisoning attacks if the platform supports DNSSEC since dns.resolve4 uses c-ares, which doesn't support DNSSEC.
smogon · Jul 9, 2019 · d4c4796 · d4c4796 · Slayer95 · Jul 9, 2019
1 parent b1891ab
commit d4c4796
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/server/ip-tools.ts b/server/ip-tools.ts
@@ -190,7 +190,7 @@ export const IPTools = new class {
 			return;
 		}
 		const blocklist = BLOCKLISTS[index];
-		dns.resolve4(reversedIpDot + blocklist, (err, addresses) => {
+		dns.lookup(reversedIpDot + blocklist, 4, (err, res) => {
 			if (!err) {
 				// blocked
 				IPTools.dnsblCache.set(ip, blocklist);