Details of the DNS flaw revealed

Courtesy LWN.net  Wed, 08/13/2008 - 05:00

Dan Kaminsky spoke to a packed house at Black Hat on 6 August to outline the fundamental flaw he found in the Domain Name System (DNS).

The vulnerability is interesting in its own right, but the implications of what can be done with it are staggering.

In addition, the "fix" has well understood shortcomings that can still potentially be exploited to poison DNS caches.

Click below, subscribers only, for an update on the vulnerability, including its details and impact.

Tags:

 

Related items

Nominum Solves Kaminsky Attack
ISP Planet: "Redwood City, Calif.-based Nominum, the DNS company singled out for praise by Dan Kaminsky in his DNS threat presentation to the Black...

Black Hat USA 2008: A report from Day 1
InfoWorld: "The number one presentation of the conference was IOActive's Dan Kaminsky's talk on his recent DNS exploit find. There was some question...

25C3: Dan Kaminsky Invokes DNSSEC
Linux Magazine: "Dan Kaminsky, front man of the DNS attacks band the middle of 2008, has delivered a retrospective at the 25th annual Chaos...

ICANN Almost Cracks Down on Spammy Domain Registrar
LinuxInsider: "An Estonian domain name registrar received a late stay of execution from the international body that regulates the domain name system....

Transcend 16GB SDHC CARD (SD 2.0 SPD CLASS 6) with Compact Card...

HP 2133-KX870AT 8.9-inch Mini-Note PC (C7-M 1.6 GHz Processor,...
Small but mighty The HP 2133 Mini-Note PC might be small in size (2.8lbs and 1.05" thin) but it's big on usability, durability, and sleekness....

Logitech V270 Cordless Optical Bluetooth Mouse- Charcoal
The Logitech V270 Cordless Optical Notebook Mouse for Bluetooth works without a receiver for the ultimate in hassle-free mobility. It instantly...


 

Post new comment

The content of this field is kept private and will not be shown publicly.
motd.ambians.com