Jump to content

So major DNS Issue?

InkofDeath

By InkofDeath
in Tech and Computers

 Share

Recommended Posts

InkofDeath

InkofDeath

Posted
Posted

http://www.wired.com/techbiz/people/mag ... f_kaminsky

 

 

 

Then last January, on a drizzly Sunday afternoon, he flopped down on his bed, flipped open his laptop, and started playing games with DNS. He used a software program called Scapy to fire random queries at the system. He liked to see how it would respond and decided to ask for the location of a series of nonexistent Web pages at a Fortune 500 company. Then he tried to trick his DNS server in San Diego into thinking that he knew the location of the bogus pages.

 

 

 

Suddenly it worked. The server accepted one of the fake pages as real. But so what? He could now supply fake information for a page nobody would ever visit. Then he realized that the server was willing to accept more information from him. Since he had supplied data about one of the company's Web pages, it believed that he was an authoritative source for general information about the company's domain. The server didn't know that the Web page didn't existit was listening to Kaminsky now, as if it had been hypnotized.

 

 

 

Two paragraphs quoted out of a 5 page article.

 

 

 

What's everyone's thoughts on this, or is it completely blown out of proportion of the severity of this? To be honest if it's as it sounds it's pretty messed up and freaky that something so easy got past so many people (or it hasn't and has been a well kept secret).

 

 

 

But yea, it's pretty interesting how software/hardware still has it's open holes.

Link to comment
Share on other sites
Makoto_the_Phoenix

Makoto_the_Phoenix

Posted
Posted

It's real, just told in a nice way. The DNS poisoning attacks are very, very real, and many people had become susceptible to it. Now, unless you haven't updated your machine since the dawn of time, you're protected from it.

Linux User/Enthusiast Full-Stack Software Engineer | Stack Overflow Member | GIMP User
s1L0U.jpg
...Alright, the Elf City update lured me back to RS over a year ago.

Link to comment
Share on other sites
D. V. Devnull

D. V. Devnull

Posted
Posted

Even better, could we just get a table (or link to one) that shows info on what is vulnerable and what isn't? I don't like the thought of my web requests being hijacked by anyone. :(

 

 

 

~D. V. "Hey... Where'd the page go?" Devnull

tifuserbar-dsavi_x4.jpg and normally with a cool mind.

(Warning: This user can be VERY confusing to some people... And talks in 3rd person for the timebeing due to how insane they are... Sometimes even to themself.)

Link to comment
Share on other sites
Makoto_the_Phoenix

Makoto_the_Phoenix

Posted
Posted
Even better, could we just get a table (or link to one) that shows info on what is vulnerable and what isn't? I don't like the thought of my web requests being hijacked by anyone. :(

 

 

 

~D. V. "Hey... Where'd the page go?" Devnull

 

As far as I know, if you've upgraded your machine since this past September at the latest, then you should be alright. More or less, this was affecting specific DNS servers, and they should've patched those things up by now.

Linux User/Enthusiast Full-Stack Software Engineer | Stack Overflow Member | GIMP User
s1L0U.jpg
...Alright, the Elf City update lured me back to RS over a year ago.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept