Kaminsky's Powerpoints used yesterday at the convention found here:
Black-Hat-2008-Dan-Kaminsky-releases-dns-info
104 Slides in all.
Check to see whether you/yourISP needs patching here:
.
A little aside, DNSRake (a tool he used but didn’t demo) poisons cache within 10 second.
There are obviously other tools out there(Metaspoit, et al), but he used this tool in his proof of exploit presentation.
I am no geek. I use the web a lot and notice stuff.
Yesterday at one of my favorite sources for FR http://www.telegraph.co.uk/news/index.jhtml, "Business", first IE tells me it can't open the window. When I refreshed the URL, I went to Walmart.com.
Is this what is being referred to in the article. Is it happening already?
yitbos
This is NOT a DNS flaw.
This is a flaw in BIND, a particular piece of software that does DNS.
While the majority of DNS servers use BIND, it is not the only one.
I stopped using BIND many years ago due to it's poor track record of security and compliance with RFCs.
I switched to DJBDNS and have had zero problems with DNS since then.
B4L8r
Garde la Foi, mes amis! Nous nous sommes les sauveurs de la République! Maintenant et Toujours!
(Keep the Faith, my friends! We are the saviors of the Republic! Now and Forever!)
LonePalm, le Républicain du verre cassé (The Broken Glass Republican)