Be aware there is a DNS vulnerability out that can really compromise your personal information.The official release can be found here:
http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/For something that is a bit more user friendly to understand explains it:
http://www.scribkin.com/2008/06/13/my-isp-is-a-dns-sellout/A tool to check your DNS from Dan who found the vulnerability is hosted at:
http://doxpara.com/And if you use OpenDNS (like I started to a month ago, thanks J. Phil at skribkin) you should not have been affected:
http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/Thanks to tsudohnimh who started the word on Friend Feed!
http://www.knowthenetwork.com/blog/?p=701--Brianhttp://bmbufalo.blogspot.com
http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/For something that is a bit more user friendly to understand explains it:
Or get a great explanation of how DNS works (and can be evil and good) here:
just like Web sites being cached by your browser, DNS (Domains
resolving to specific IP addresses) is also cached. From this
vunerability, these "Caching Name Servers" can be easily hacked and
from there, you could have people on, say an entire ISP, going to
whatever site you wanted to. Think phishing, but on a MUCH larger
scale. - Tim Hoeck
http://www.scribkin.com/2008/06/13/my-isp-is-a-dns-sellout/A tool to check your DNS from Dan who found the vulnerability is hosted at:
http://doxpara.com/And if you use OpenDNS (like I started to a month ago, thanks J. Phil at skribkin) you should not have been affected:
http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/Thanks to tsudohnimh who started the word on Friend Feed!
http://www.knowthenetwork.com/blog/?p=701--Brianhttp://bmbufalo.blogspot.com
No comments:
Post a Comment