Archive for July, 2008
BIND Issues on High Traffic Caches
ISC has issued a statement about the performance issues that many BIND administrators are seeing.
Evidently, the new security updates to BIND are causing problems in high traffic recursive environments (more than 10k queries/sec). Specifically, the issue exists with BIND 9.5.0-P1. Their statement recommends that systems affected by this be immediately downgraded to BIND 9.4.2-P1, which [...]
Posted: July 30th, 2008 under BIND.
Comments: none
An Exploit is in the Wild
Well that didn’t take long.
Mere days after the details of the recent DNS attack were made public there is already an exploit out in the wild. HD Moore and I)ruid have added an exploit to the Metasploit project, a popular penetration testing framework. These are the good guys, but the bad guys have the same [...]
Posted: July 23rd, 2008 under Security.
Comments: none
DNS Attack Details Come Early
It was just 14 days ago that Dan Kaminsky announced that he had found a critical security flaw in DNS, but that the details would be kept secret until he took the stage at Black Hat on August 6th. This 29 day gap between the announcement of the discovery and the detailed description of the [...]
Posted: July 22nd, 2008 under Security, Uncategorized.
Comments: none
A Big Day for DNS Security
Dan Kaminsky has done it again.
Kaminsky found a security vulnerability in the design of DNS itself. Yea, let that sink in. The problem was in the DNS protocol, not just certain implementations. That means BIND is affected (of course), Microsoft DNS is affected, and so on. A full list of affected systems is available in [...]
Posted: July 9th, 2008 under BIND, Security, Server Software, Uncategorized, djbdns.
Comments: none