SkyHorse.Org

Major flaw on the DNS Internet architecture discovered

July 8th, 2008 SkyHorse

Conspiracy fans unite: the worlds major Internet vendors sent their engineers out for secret meetings at the microsoft campus for the past few months to tackle the biggest flaw on the internet’s architecture since it began.

The issue resides on the obiquituous DNS system responsible for directing applications to the right servers when they request a URL. Although there is yet no evidence of this flaw being exploited, it will not take long for black hat hackers to use it to direct you to their own servers when you try to open your online banking or check your emails.

All major vendors will be releasing fixes to their systems at the same time, as to minimise the chances of such rogue practicies happening, something unheard of which clearly shows the gravity of the situation.

More detail at http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/
Dan’s website where you can check for the vulnerability: http://www.doxpara.com

DeliciousFacebookTwitterLinkedInShare/Bookmark
Tags: DNS, hacking, Security

Related posts:

  • Fixing open DNS servers
  • ModSecurity 2.5 : a book by Magnus Mischel
  • modsec.sh updated

Posted in Computing | No Comments »

Fixing open DNS servers

September 28th, 2006 SkyHorse

Ok, there seems to be a *lot* of posts and threads about this issue and I think a simple page is appropriate.

Lets start with the problem. Check the report for your domain here: http://www.dnsreport.com/tools/dnsreport.ch?domain=YOUR_DOMAIN_HERE.COM

An open DNS server is one that replies to a query about a domain it is not responsible for, to anyone who asks for it. For starters, that is just a waste of processing time, but it can be worse if it is used for flooding. See, since a DNS query is (much!) smaller in number of bytes than a DNS response, if it is spoofed it can be used to perform a DoS attack on a computer with several times the bandwidth of the perpretator.

I’ve posted a solution to my obscure cPanel guide, have a look if your interested:
Fixing Open DNS servers

DeliciousFacebookTwitterLinkedInShare/Bookmark
Tags: bind, DNS, GNU/Linux, hacking, hosting, Security, WHM

Related posts:

  • Major flaw on the DNS Internet architecture discovered
  • The Definite Guide of Obscure Tweaks to Install and Maintain cPanel / WHM (version 10)
  • modsec.sh updated

Posted in GNU/Linux, hosting, WHM | No Comments »

  • Tags

    advertising AI apple behavioural-targeting business Computing cPanel deep packet inspection Downloads DSP Games GNU/Linux google hacking hacking Hardware headphones hosting Ideas Instant Messaging iphone marketing online-advertising online media Personal Philosophy phorm poker Programming satire scripts Security sociology startups technology Travel ubuntu v-moda Visionarism web-2.0 web-marketing Web Design WHM wunderloop yahoo

  • Pages

    • About
    • Web Server Administration
      • Auto update modsecurity rules – modsec.sh
      • DirectAdmin to cPanel : a partial BASH solution
      • The Definite Guide of Obscure Tweaks to Install and Maintain cPanel / WHM (version 10)
        • Configuring E-mail (Exim) related areas
        • Fixing open DNS servers
        • Monitoring your server
        • Scripts and misc information
        • Security by Obscurity
        • Tweaking apache web server

  • Twitter Updates

    • Ads

    • RSS ExchangeWire.com

      • The PostView: The Last Hurrah For The Horizontal DR Ad Network 2 February, 2012
      • Brian Fitzpatrick, Europe MD, Adap.tv, Discusses The EMEA Offering, The Complexities Of The European Video Ad Market And The Rise Of RTB In The Video Channel 1 February, 2012
      • The Publisher Question: To RTB Or Not To RTB 31 January, 2012

    • RSS Lies, Damned Lies…

      • Building the Perfect Display Ad Performance Dashboard, Part II – metrics 20 December, 2011
      • Should Wikipedia accept advertising? 21 November, 2011
      • Building the Perfect Display Ad Performance Dashboard, Part I – creating a measurement framework 9 November, 2011

    • RSS iMedia Connection: Consumer Strategies

      • A consumer-driven mindset in a big media package
      • Learn to leverage the social-search connection
      • Your social media disaster kit

    • RSS Segmentacion por comportamiento

      • Post Videos from Your iPhone or iPad 3 February, 2012
      • New Themes: Currents and Debut 2 February, 2012
      • Import from Tumblr in 3 Easy Steps 2 February, 2012

    • RSS Sandlines

      • The Social Phone doesn’t come with an IVR menu 7 November, 2011
      • Are you ready for Big Data? 2 November, 2011
      • Sandlines @ Mediapro 29 October, 2011

    • RSS Adotas

      • Sponsormob Leads the Way Into RTB for Mobile 3 February, 2012
      • Video: Social Media Monitoring Comes to “The Future of Engagement” 3 February, 2012
      • Weird Study: Mobile Purchasing While in the Bathroom on the Rise 3 February, 2012

    • RSS NMA

      • Twitter's Enhanced Profiles are a precursor to major platform changes 3 February, 2012
      • Unilever sets up customer-insight panel to weather 'difficult' 2012 3 February, 2012
      • We Are Social appoints Skive’s Ollerton as marketing head 2 February, 2012

    • RSS Brand Republic

      • Hearst-Rodale harnesses Apple Newsstand to sample print launch 3 February, 2012
      • Out and About 3 February 3 February, 2012
      • Rugby's first interactive app launched for RBS Six Nations 3 February, 2012

    • RSS MarketingVox

      • Closing Bell: Komen reverse decision after social media onslaught | Google rejects EU request | Malware bouncer 3 February, 2012
      • More Retailers Like Staples Focus on Tablet Design 3 February, 2012
      • New Approachs to F-Commerce 3 February, 2012

    • RSS Behavioural Targeting news

      • Oryzon Nominates Bispecific LSD1/MAOB Inhibitor as Drug Candidate to Enter ... - San Francisco Chronicle (press release) 5 February, 2012
      • Why Context Is King in the Future of Digital Marketing - Mashable 3 February, 2012
      • Online behavioural targeting: Q&A - Telegraph.co.uk 1 February, 2012
      • Quidsi, Inc. Chooses SiteSpect to Optimize its Five Online Retail Sites with ... - MarketWatch (press release) 31 January, 2012
      • DS-IQ Integrates Intel® AIM Suite into Behavioral Targeting and Measurement ... - PR Newswire (press release) 31 January, 2012

    • Ads

    • Blogroll

      • 90kts
      • Acxiom Poker Nights
      • Amy’s blog
      • Bytter’s blog
      • Impare Arquitectura
      • Impare Design
      • morena flor no samba da saudade
      • Not Quite There Yet
      • Swedish Pirate Party

    • Cartoons

      • Geek & Poke
      • Order of the Stick
      • User Friendly

    • Gaming

      • Neverwinter Nights

    • online media

      • Knowledge for the Digital Economy
      • Mike on Ads

    • Personal

      • Banksy
      • Designarte
      • Made to measure shirts – Atelier de Camisa
      • My Amazon Wishlist
      • SkyServers.Org

    • Science

      • New Scientist
      • Rex Research
      • ScienceBox
      • Wired

    • Security

      • GPG4Win
      • GPGol
      • GPGShell
      • Mod Security
      • Offline Windows NT(2k,XP) Password Recovery

    • Web Design

      • PageStrength
      • SiteScore
      • UrlTrends

    • Akismet

      99,767 spam comments blocked by
      Akismet

    • Meta

      • Log in
      • Entries RSS
      • Comments RSS
      • WordPress.org

    © 2003 - 2011 Paulo Cunha | SkyHorse.Org is proudly powered by WordPress | Theme based on Bob