Re: Multiple DNS implementations vulnerable to cache poisoning

• From: Owen DeLong
• Date: Tue Jul 08 20:20:56 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

This makes it hard to test servers being used in production environments
without GUIs.  The tool is not Lynx compatible.

This is also being covered over on the Defcon Forums. Jeff Moss has said that he'll post the link to the interview that Kaminsky is doing right now, after it's over. Here's the link to the Forum discussion:

https://forum.defcon.org/showthread.php?t=9547

The forum link also has a link to Dan's tool, where you can see if your DNS server is vulnerable.

--
In April 1951, Galaxy published C.M. Kornbluth's "The Marching Morons".
The intervening years have proven Kornbluth right.
--Valdis Kletnieks

• Follow-Ups:
  • Re: Multiple DNS implementations vulnerable to cache poisoning Lynda
  • Re: Multiple DNS implementations vulnerable to cache poisoning Christian Koch

• References:
  • Multiple DNS implementations vulnerable to cache poisoning Buhrmaster, Gary
  • Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth
  • Re: Multiple DNS implementations vulnerable to cache poisoning Jay R. Ashworth
  • Re: Multiple DNS implementations vulnerable to cache poisoning Lynda

• Prev by Date: Re: Multiple DNS implementations vulnerable to cache poisoning
• Next by Date: Re: Multiple DNS implementations vulnerable to cache poisoning
• Date Index
• Thread Index
• Author Index
• Historical