Preventing DNS Poisoning in Linux

Jul 12, 2008, 00:00 (2 Talkback[s])
(Other stories by Steven J. Vaughan-Nichols)

[ Thanks to Steven J. Vaughan-Nichols for this link. ]

"If you don't think the recent discovery of the DNS cache-poisoning flaw is bad news and needs to be addressed as soon as possible, let me repeat what Paul Mockapetris, DNS' (Domain Name System) inventor, had to say about this security hole: Patch your DNS servers right now.

"CERT can tell you about the technical details of DNS cache-poisoning, here's what an attack on a DNS server can mean to you according to Dan Kaminsky, a researcher at security services firm IOActive: The vulnerability could allow attackers to redirect Web traffic and e-mails to systems under their control..."

Complete Story

Related Stories:

• Patches Coming Today for DNS Vulnerability(Jul 09, 2008)
• In Latest Release, Nmap Looks Better than Ever(Feb 07, 2008)
• OpenDNS Provides Added Safety for Free(Dec 18, 2007)
• Restricting zone transfers with IP addresses in BIND DNS Server(Oct 16, 2007)