|
Written by Maksym Nesen
|
|
Monday, 11 August 2008 15:13 |
Today I would like to comment on recent compromentation of the domain name service (widely knows as DNS) protocol realisation.
Technical stuff:
Recently it was discovered that DNS protocol implementation on many Linux OSs contains serious security defect. This leads to possibility of a false record injection into many DNS servers. It's possible to prepare and run a query which injects almost any DNS record into existing DNS table on name servers.
What it means for consumers:
Actually this security hole in the DNS protocol means that cyber criminals can spoof almost any server. For example, you own a domain name 'myblog.com' and you publish your blog on it. If a criminal is interested in spoofing of your domain, s/he can find the closest name server (the name server which directly routes queries for your domain to its actual hosting place), check if this name server has security hole and if so (in 90% cases yes), inject a DNS record which will route all queries not to your original blog, but to some other server in the Internet. That means that your visitors will type 'myblog.com' in their browsers and will see totally different page instead of your blog. And this server isn't controlled by you, so you are not able to do anything in order to protect yourself from such a cryme. And practically no one can avoid this. So, this security hole is very dangerous. It's possible to compromise almost any domain on the net without any hacking, just using DNS false record.
How to fix:
Actually fixing of the problem is totally for hosting administrators. The only thing customers can do is to check, if their name servers are reliable using several available checkers on the net. Than you can report to hosting adminstrator if any vulnerability is detected.
And be careful with your existing hosting, check if DNS on if is secure an and if not, contact administrator immediately. On the other hand if you are just thinking considering buying a new hosting, make sure it is secure and propably buy from reliable companies (like http://ksmhost.net)
That is all regarding DNS vulnerability. Hope to write another new article soon.
|
|
We offer: -effective SEO and advertising sollutions
-high level web solutions
-custom desktop programs
-easy way to cooperate
-system of discounts
-help and support |
|
|
Written by Ondrej Mikle
|
|
Saturday, 05 July 2008 11:28 |
|
Working Example We use the knowledge of the single MD5 collision published by
Wang et al. to show an example of a pair of binary self-extract packages
with equal MD5 checksums, whereas resulting extracted contracts have fundamentally
different meaning... |
|
Read more...
|
|
|
|
|
<< Start < Prev 1 2 Next > End >>
|
|
Page 1 of 2 |
