As you probably already know, security researcher Dan Kaminsky (and his team I believe) recently reported a DNS vulnerability affecting most DNS servers world-wide. They have also released patches for all platforms before actually revealing details about the vulnerability. In fact, they are leaving people the time to upgrade their systems, before giving us any of the secret facts.
And it doesn't stop there! If you check out the Doxpara research site (at: http://www.doxpara.com), you will find an online DNS checker which will tell you whether your DNS server seems safe or not.
If you are like me your DNS requests might get routed to one of several DNS servers, so this can require several online "tests".
Some people seem to be having issues with ZoneAlarm (as reported by Nathan McFeters at ZDnet) but it seems workarounds are already available. So this really does seem minor to me.
Will this start to pave the way to responsible hack disclosures?
Add blog to our blog directory
No comments:
Post a Comment