Darksat IT Security Forums
May 13, 2021, 06:47:55 am
Welcome, Guest. Please login or register.

Login with username, password and session length
News: Darksat IT Security Forum
From Firewall Support, AntiVirus Questions, Spyware problems, Linux and Windows Security, Black Hat SEO right down to Website Design and Multimedia
 
  Home Help Search Gallery Links Staff List Login Register  

How serious is Dan Kaminsky's DNS spoof discovery?


Pages: [1]
  Print  
Author Topic: How serious is Dan Kaminsky's DNS spoof discovery?  (Read 2096 times)
desperado618
N00b
*
Posts: 6


View Profile
« on: July 13, 2008, 08:15:02 pm »

I have read on some sites that this is the most serious DNS vulnerability ever. Recently ive read on Full Disclosure that this is extremely over-hyped.
AParently all of the major vendors have released updates but we all know that 80% of the companies affected wont apply updates before November.
Report Spam   Logged

Share on Facebook Share on Twitter

Defcon 5
Master
*****
Posts: 2410



View Profile WWW
« Reply #1 on: July 15, 2008, 10:26:50 am »

extremely over-hyped

said it yourself.
Report Spam   Logged
desperado618
N00b
*
Posts: 6


View Profile
« Reply #2 on: July 24, 2008, 10:43:03 pm »

Might not be overhyped. With the POC out, I checked several different DNS servers and about 90% of them were vulnerable. Even patched systems may be vulnerable if they are sitting behind nat devices. Since ISP vendors werent invited to be part of Kaminskys alliance, none of them have released signatures.
Report Spam   Logged
Darksat
Administrator
Master
*******
Posts: 3303



View Profile WWW
« Reply #3 on: July 25, 2008, 03:13:41 am »

Sure its a huge potential risk but a patch for this should be so easy to write.
The main issue is simply slow uptake of patches, which is partially because of the lack of full disclosure.
Report Spam   Logged
warscar
Master
*****
Posts: 640


View Profile
« Reply #4 on: May 11, 2021, 06:39:30 pm »

Huh?367.4Huh?CHAPHuh?Huh?MinnSusaDeclHuh?Huh?TefaHuh?XVIIMinlHuh?Huh?TescHuh?4035Huh?Huh?Huh?
OystCouiPopp0720SilvSharAntiHuh?Huh?Huh?Huh?Huh?Huh?GreeTextTampHuh?Huh?TextHuh?PeteSunsHuh?
NothHuh?LiveVoguHuh?TurnMotoRoxyRobeKurtDougHuh?WindHuh?Huh?MariobjeSergviscviscELEGHuh?Huh?
JuliAntoHuh?Huh?Huh?Huh?Joel3201EvarDiabMORGZoneCollWindHuh?RusiHuh?Huh?1043ZoneHuh?ZoneZone
XVIIKrezHuh?Huh?Huh?Huh?TrisHuh?Huh?RossMargHuh?Huh?Huh?PhilHuh?Huh?AgatHuh?Huh?Huh?Huh?Huh?
Huh?Huh?MHohHuh?Huh?SeleFirsToshSF83Huh?EcoiHuh?MistXVIIHuh?WillHearWAECHuh?PEUGHuh?Huh?Blue
Huh?Huh?Huh?Huh?MariInteHuh?WindHuh?FreeNoorBoscValeChouBritHuh?FootHuh?Huh?Huh?EsseHuh?Huh?
JeweHuh?XVIITituHuh?Huh?Huh?Huh?Huh?Huh?Huh?Huh?knowHuh?HollLiviHuh?Huh?DiscHuh?DylaGingHuh?
ModeHuh?Huh?GerdHuh?Huh?LaugHuh?Huh?Huh?Huh?Huh?Huh?Huh?TitaRobeHuh?Huh?Huh?Huh?Huh?Huh?Huh?
Huh?Huh?CabrHuh?Huh?AndyHuh?103xuglyDidiHuh?PennHuh?tuchkasHuh?Mari
Report Spam   Logged

Pages: [1]
  Print  
 
Jump to:  

Powered by EzPortal
eXTReMe Tracker
Security Forum
Bookmark this site! | Upgrade This Forum
SMF For Free - Create your own Forum


Powered by SMF | SMF © 2016, Simple Machines
Privacy Policy
Page created in 0.047 seconds with 17 queries.