- TalkBack 8 of 12:
- Next »
- « Previous
- Thread View
- Flat View
- I beg to differ
-
It would be security through obscurity. Do you think there are no organizations out there that can figure out this on their own? Who knows if this was already used? This exploit is highly derivative and reading Kaminsky's article on how he discovered it I'm amazed nobody else did before (engineers at CDN providers for example.)
DNS is still quite insecure even with the random port mitigation. Moving to TCP would add a little bit more but still not perfect and it would be prone to man-in-the-middle attakcs. DNS needs some sort of authentication (IPSec AH, SSL connections, or DNSSec.)
http://en.wikipedia.org/wiki/Security_through_obscurity
In computer security, ignorance ISN'T bliss.
Alecco - Posted by: alecco Posted on: 07/24/08 You are currently: a Guest | Members login | Terms of Use
So, Linux's BIND the first to be exploited...
qmlscycrajg | 07/24/08
|
 
Are you sure it's only Linux?
alecco | 07/24/08
|
I think he meant first one is Linux BIND
phatkat | 07/24/08
|
|
Cool
alecco | 07/24/08
|
|
Yes
nmcfeters | 07/24/08
|
|
On NS record replacement for other domains
alecco | 07/24/08
|
|
I think this is all terribly irresponsible...
BitTwiddler | 07/24/08
|
|
I beg to differ
alecco | 07/24/08
|
|
On the ethics
nmcfeters | 07/24/08
|
|
Your correct Alecco
phatkat | 07/24/08
|
|
RE: |)ruid and HD Moore release part 2 of DNS exploit
DonD01 | 07/24/08
|
|
RE: |)ruid and HD Moore release part 2 of DNS exploit
hd-download | 07/26/08
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now
- Using Red Hat Enterprise Linux AS to Achieve Highly Available, Load-Balanced Clusters Dell The Red Hat Enterprise Linux AS operating system integrates Cluster ... Download Now
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Save time with automated shipping solutions
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Visit the UPS Business Essentials Guide
- The more you simplify, the more you save
-
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
- Learn more >>
- Twelve Ways to Reduce Costs with Microsoft® SQL Server® 2008
-
Discover ways in which organizations can use Microsoft SQL Server 2008 to save time and money.
- Click to download>>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer >>
-
-
Smart Tech
Expert advice on innovations in healthcare and the green technologies that make it happen.
Find out more
-
Smart Business
Discussion and advice on management issues that revolve around making your world smarter and more useful.
More Smart Advice
-
Smart People
The best and worst moves in the management and strategy trenches.
Learn More
