PDA

View Full Version : DNS attack code publicised



Robin S_
24-07-2008, 10:59 PM
I presume there is some factual basis for this story. What a great "security" company to release a bomb like that!

http://news.yahoo.com/s/pcworld/20080724/tc_pcworld/148854

Myth
24-07-2008, 11:18 PM
I read something on this last week sometime. Apparently they only released the code AFTER the flaw had been patched

bevy121
25-07-2008, 12:13 PM
They have known of this problem for six months or more now....

That's what that ms update (the one made problems for Zone Alarm) was for a week or 2 back

As Myth says, they only released the info after the fix was coded

utopian201
25-07-2008, 12:45 PM
I presume there is some factual basis for this story. What a great "security" company to release a bomb like that!

http://news.yahoo.com/s/pcworld/20080724/tc_pcworld/148854

It drives development and action to fix it. If it weren't publicised, some people wouldn't patch themselves so the attackers who -are- aware of it can take advantage of them.

robsonde
25-07-2008, 03:18 PM
so Dan Kaminisky found this issues early this year.
he has spent many months working with big verders on a patch.

on July 8th all the big verders released a patch, and Dan told the world that he would make all the details public on Aug 7th.

all of us network people started patching......

many of us doing the patching noticed that the new code for DNS made the source port for request be a random port, thats interesting....

on the 21st, the full description of the vulnerability was leaked.

a high tech view of the bug for the super geek
http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html

a softer version for the less geek
http://beezari.livejournal.com/141796.html

on the bright side, if you use openDNS you will be fine as they have patched.

on the down side, only about half on New Zealnds ISPs have patched....

robsonde
27-07-2008, 12:11 AM
bump.
I feel that keeping this in the minds of user is good......

one of the big three IPS still have not patched.......