Author Topic: DNS Checker - are you safe? (Read 7454 times)

Broni · « **on:** July 13, 2008, 03:05:54 PM »

Recently, a significant threat to DNS, the system that translates names you can remember (such as www.doxpara.com) to numbers the Internet can route (66.240.226.139) was discovered, that would allow malicious people to impersonate almost any website on the Internet. Software companies across the industry have quietly collaborated to simultaneously release fixes for all affected name servers.

Check your computer here: http://www.doxpara.com/

My results:

Quote

Your name server, at ***, appears to be safe

computeruler · « **Reply #1 on:** July 13, 2008, 06:56:35 PM »

it said mine was vunribale

what do i do?

Broni · « **Reply #2 on:** July 13, 2008, 06:59:37 PM »

You can't do much. DNSes are handled by your ISP servers. Complain to your ISP. Who is it?

kpac · « **Reply #3 on:** July 14, 2008, 07:27:27 AM »

Mine is vulnerable also. Does this apply worldwide?

computeruler · « **Reply #4 on:** July 14, 2008, 10:51:47 AM »

i have roadrunner what should i tell them?

Broni · « **Reply #5 on:** July 14, 2008, 06:23:21 PM »

This is pretty widespread problem.
While talking to ISP, ask them, if they are doing anything to make their connection more secure.
Give them my Comcast example, which passed the test.

!~:.Pink Floyd.:~! · « **Reply #6 on:** July 16, 2008, 08:56:39 AM »

I cant seem find the link to check

Broni · « **Reply #7 on:** July 16, 2008, 10:58:44 AM »

Click on:

[recovering disk space -- attachment deleted by admin]

drmsucks · « **Reply #8 on:** July 16, 2008, 11:05:35 AM »

Mine "appears to be safe."

I use Open DNS - switched from my ISP's DNS a long time ago.

Thanks for the 'heads up.'

!~:.Pink Floyd.:~! · « **Reply #9 on:** July 18, 2008, 03:04:29 PM »

they cant tell -.-

Broni · « **Reply #10 on:** July 18, 2008, 03:19:21 PM »

Who? What?

Broni · « **Reply #11 on:** July 18, 2008, 03:20:52 PM »

I found another interesting reading:

DNSstuff Freeware Detects Vulnerable DNS Servers

DNSstuff.com is offering a free tool for organizations looking to test the susceptibility of their domain name servers to a fundamental flaw in the Domain Name System protocol revealed publicly last week.

A provider of on-demand DNS and network analysis tools, DNSstuff made the freeware, which company officials have dubbed DNS Vulnerability Check, available on its site Wednesday. The tool is meant to test for the vulnerability reported by Dan Kaminsky, director of penetration testing for IOActive.

The researcher reportedly uncovered a flaw in the DNS protocol that can be exploited to poison DNS server caches and re-direct Internet traffic. While he has publicly kept details of the vulnerability close to his vest, several vendors coordinated the release of a patch in response. In the case of DNSstuff, company officials decided to offer a free tool that checks to see if DNS queries from a user’s server are coming from the same source port.

http://www.eweek.com/c/a/Security/DNSstuff...le-DNS-Servers/

ReF:

http://www.dozleng.com/updates/index.php?s...c=16121&hl=

Computer Hope Forum

News: