PDA

View Full Version : DNS Vulnerability advisory thread



ukripper
July 9th, 2008, 04:08 PM
DNS vulnerability found - http://news.bbc.co.uk/1/hi/technology/7496735.stm

http://www.networkworld.com/news/2008/070808-dns-flaw-disrupts-internet.html?hpg1=bn


If you use openDNS http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/ then you are already protected otherwise advisory updates have been released for ubuntu versions . Make sure you update.

http://www.opendns.com/features/overview/

If you run your internal DNS server make sure you patch that as well.

ice60
July 9th, 2008, 04:50 PM
thanks.

i wonder how a local patch can fix the problem when it's a protocol flaw that's probably on a remote DNS server????

tamoneya
July 9th, 2008, 04:54 PM
thanks.

i wonder how a local patch can fix the problem when it's a protocol flaw that's probably on a remote DNS server????

Open DNS allows you to locally make DNS queries so that you dont have to go out to get the DNS server.

ukripper
July 9th, 2008, 04:59 PM
thanks.

i wonder how a local patch can fix the problem when it's a protocol flaw that's probably on a remote DNS server????

It is Binding issue not protocol related.

Well if your remote DNS is your ISP then they should patch it (i would rather divert my traffic to open dns in this case). As remote dns is fallback point if your local dns fails to resolve.


But if you are resolving dns locally then you need to patch it using advisory updates from your package manager.

Check this website whether your local dns server is affected or not you can find out here.
http://www.doxpara.com/

ice60
July 9th, 2008, 05:05 PM
thanks for the help.

i stopped using my ISPs DNS a long time ago. since i stopped using my ISPs DNS i found out they have been hijacking and rerouting DNS errors to a page plastered with advertising!!!!!
http://www.theregister.co.uk/2007/07/11/tiscali_dns_hijacking/

ukripper
July 9th, 2008, 05:10 PM
thanks for the help.

i stopped using my ISPs DNS a long time ago. since i stopped using my ISPs DNS i found out they have been hijacking and rerouting DNS errors to a page plastered with advertising!!!!!
http://www.theregister.co.uk/2007/07/11/tiscali_dns_hijacking/

Clever gits!:lolflag: Tiscali are notorious for crap service too!

I really like openDNS they are trustworthy and you can customize alot if you have kids it is extra protection on the content they view!:popcorn: