DNS protection Flaw Leaked Before Patches Applied

July 22nd, 2008 | Category: Tech Talk

A major flaw in the Net infrastructure was leaked to the public Monday before many IT directors had the chance to apply safety measure patches. The flaw was discovered weeks ago by Dan Kaminsky, a shield expert at IOActive, who has worked with industry leading software developers investigating World Wide Web vulnerabilities.

The potential breech is in the current implementation of the Domain Name System for Web servers. DNS is essentially a lookup system for Web servers: names of domains, such

as newsfactor.com, are translated by DNS servers to static IP addresses, essentially the true location of the site.

Cause and Cure

A flaw in the DNS caching of incoming requests makes it susceptible to malicious misdirection of Web traffic. whether a DNS server does not have an IP address for a requested domain, it asks for that info from another DNS server.

whether the clueless DNS server’s cache is fooled by […]

Orginal post by Top Tech News

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Netvouz
  • DZone
  • ThisNext
  • MisterWong
  • Wists
Related Articles
  • DNS Exploit Means Quick Patches Are Critical
  • Digging deeper in January protection Patches
  • DNS shield Flaw Secretly Patched by Multiple Vendors
  • Major World Wide Web safety measure Flaw additionally Affects E-Mail
  • Like Windows XP by Vista? You’re Safe a Few More Years
  • Microsoft Patches Critical Windows TCP Flaw
  • Faster Attacks Break DNS Patches in Under 10 Hours
  • The coming 2008 dot-com crash (Greg Linden/Geeking with Greg)
  • Lone holdout in DRMed music recommends DRM circumvention (Ken Fisher/Ars Technica)
  • Black Hat Hears defense Details as Reporters Booted

    • No comments yet. Be the first.

    Leave a reply