View Profile
View Forum Posts
View Forum Threads
View Friends
View Blog Entries
Reply With QuoteThis is old news.
http://my.king.net/2008/07/dns-at-ri...dor-cache.html
Every now and then, I read this kind of news.
If you are new to domains and looking to buy, sell and learn about domains then you have come to the right place. DNForum is the largest domain name community on the internet and continues to grow every day. There are over 105,000 domainers on DNForum doing everything from buying domains, selling domains, learning about domains and discussing domains. Take a minute and Register.
Register Today on DNForum IT'S FREE!
Major DNS Flaw Revealed - Could Cause DNS Server & Domain Hijacking
Hi I just read this on Google News:
One day after a security company accidentally posted details of a serious flaw in the Internet's Domain Name System (DNS), hackers are saying that software that exploits this flaw is sure to pop up soon.
Several hackers are almost certainly already developing attack code for the bug, and it will most likely crop up within the next few days, said Dave Aitel, chief technology officer at security vendor Immunity. His company will eventually develop sample code for its Canvas security testing software too, a task he expects to take about a day, given the simplicity of the attack. "It's not that hard," he said. "You're not looking at a DNA-cracking effort."
The author of one widely used hacking tool said he expected to have an exploit by the end of the day Tuesday. In a telephone interview, HD Moore, author of the Metasploit penetration testing software, agreed with Aitel that the attack code was not going to be difficult to write.
The flaw, a variation on what's known as a cache poisoning attack, was announced on July 8 by IOActive researcher Dan Kaminsky, who planned to disclose full details of the bug during an Aug. 6 presentation at the Black Hat conference.
That plan was thwarted Monday, when someone at Matasano accidentally posted details of the flaw ahead of schedule. Matasano quickly removed the post and apologized for its mistake, but it was too late. Details of the flaw soon spread around the Internet.
Full story link from PC World Magazine: http://www.pcworld.com/businesscente..._imminent.html
Other takes on the issue:
Wired Magazine - http://blog.wired.com/27bstroke6/2008/07/details-of-dns.html
Channel Web - http://www.crn.com/security/209400660
Earlier sory (before leak) - http://www.techworld.com/security/ne...sid=102110&pn=1
Domain Names: Names2Buy.com
Websites: VintageRadio.com | 73.biz
This is old news.
http://my.king.net/2008/07/dns-at-ri...dor-cache.html
Every now and then, I read this kind of news.
KING.NET add your products and services : MultiForums.com Yet Another Forum : SQIT.com create your QR Codes and Microsoft Tag.
The new news is that the details of the flaw were unintentionally released to the public today!
Domain Names: Names2Buy.com
Websites: VintageRadio.com | 73.biz
unintentionally??????????
I don't think so.
Posting Permissions
Copyright © 2001-2011 DNForum.com™ / DNF.com™
Whois Domain Registration .com.au registration Website Designed by DCG.com
Bookmarks