Wednesday, July 9, 2008

New DNS Vulnerability To Watch Out For

Be aware there is a DNS vulnerability out that can really compromise your personal information.

The official release can be found here:
http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/

For something that is a bit more user friendly to understand explains it:


just like Web sites being cached by your browser, DNS (Domains
resolving to specific IP addresses) is also cached. From this
vunerability, these "Caching Name Servers" can be easily hacked and
from there, you could have people on, say an entire ISP, going to
whatever site you wanted to. Think phishing, but on a MUCH larger
scale.
- Tim Hoeck
Or get a great explanation of how DNS works (and can be evil and good) here:
http://www.scribkin.com/2008/06/13/my-isp-is-a-dns-sellout/

A tool to check your DNS from Dan who found the vulnerability is hosted at:
http://doxpara.com/

And if you use OpenDNS (like I started to a month ago, thanks J. Phil at skribkin) you should not have been affected:
http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/

Thanks to tsudohnimh who started the word on Friend Feed!
http://www.knowthenetwork.com/blog/?p=701

--

Brian

http://bmbufalo.blogspot.com