[Freemeorkillme]

Most of you techies have already patched(right??), if not....well, heck, until all the TLD and ISP's prominent DNS servers are patched worldwide....

Kaminsky's Powerpoints used yesterday at the convention found here:

Black-Hat-2008-Dan-Kaminsky-releases-dns-info

104 Slides in all.

Check to see whether you/yourISP needs patching here:

DoxPara

[KoRn]

.

[Freemeorkillme]

A little aside, DNSRake (a tool he used but didn’t demo) poisons cache within 10 second.

There are obviously other tools out there(Metaspoit, et al), but he used this tool in his proof of exploit presentation.

[ShadowAce]

[bruinbirdman]

"So being able to alter the associations between domain names and IP addresses allows malicious attackers to control where online information gets routed. "

I am no geek. I use the web a lot and notice stuff.

Yesterday at one of my favorite sources for FR http://www.telegraph.co.uk/news/index.jhtml, "Business", first IE tells me it can't open the window. When I refreshed the URL, I went to Walmart.com.

Is this what is being referred to in the article. Is it happening already?

yitbos

[Knitebane]

Grrrr.

This is NOT a DNS flaw.

This is a flaw in BIND, a particular piece of software that does DNS.

While the majority of DNS servers use BIND, it is not the only one.

I stopped using BIND many years ago due to it's poor track record of security and compliance with RFCs.

I switched to DJBDNS and have had zero problems with DNS since then.

[AFreeBird]

B4L8r

[LonePalm]

Self Ping for later.

Garde la Foi, mes amis! Nous nous sommes les sauveurs de la République! Maintenant et Toujours!
(Keep the Faith, my friends! We are the saviors of the Republic! Now and Forever!)
LonePalm, le Républicain du verre cassé (The Broken Glass Republican)