Please wait while the page is being loaded Skip this advertisement >
Saturday | 22 November, 2008
ARN

Researchers unleash DNS attack code

HD Moore unveils two exploits for Dan Kaminsky's critical Internet routing bug
Gregg Keizer (Computerworld) 25 July, 2008 08:35:08
Page:

That was when Moore and I)ruid started working on the attack code, Moore said Thursday. "We were keeping an eye on it before, but we didn't really start until Monday," he said. "There have been tools available to check to see if you needed to patch [the DNS software], but there wasn't any way to actually see if you could actually do this attack."

The exploits have been added to the Metasploit framework, said Moore, but at the moment are available only for Linux. He said that work on exploits able to hack Mac OS X and other operating systems would start soon, but that the attack would not be tweaked for Windows. Because of the way the exploits are written, it "would never work on Windows."

That doesn't mean Windows users are safe, however. "Most attacks will be against servers running Linux," Moore predicted.

Storms didn't dismiss the possibility of attacks now that exploit code is available, but downplayed the threat because of all the attention the bug has received. "I think the likelihood of a mass attack is limited," said Storms, "because a whole lot more people understand how DNS works than did several weeks ago."

Users should patch now, said Storms, even if they're not operating a DNS server. "It's important that you look at the Microsoft patch now," he said, referring to the fix Microsoft issued two weeks ago for every version of Windows except Vista.

"Anytime you can change [entries on a] DNS server, you run into a lot of other issues, including drive-by Web attacks," warned Moore.

Page:
Have your say!
ARN Directory | Distributors relevant to this article
Also Technology , Altech Computers , Altronic Distributors Pty Ltd , Aquion , ASI Solutions , Cellnet , Compucon Computers , Computergate , EDsys Computers , Express Data , Express Online , Impact Systems Technology , Infortech Distribution , Ingram Micro Australia , LDS International , Leader Computers , Leading Pacific Australia , Multimedia Technology , NewLease , Simms International , Synnex Australia , Topstar Computer International , Unixpac , Westan , Westcon Group , XiT Distribution , Xpress I.T.
Additional Resources
ARN Library
white paper Click here for case studies, whitepapers and other useful vendor content
Newsletter Subscription
Sign up for our ARN newsletters!
RSS Feeds
Market Place
Find out how to win an IPod Touch with ARN.
Become a Lenovo Legend Now! Join the sales incentive exclusively for Lenovo Business Partners.
POS POS is the leading value-added distributor of point of sale & point of service technologies in ANZ.
Kaspersky Internet Security 2009 released - with virtual keyboard for safe entry of passwords. Try it..
Power through the disruptions: Uninterruptibility from Eaton!
 
Panel Sessions

  • ARN Panel Sessions: Day 3

    The last of our panel sessions recorded live at CeBIT 2008. Today, the topic is storage. Data is growing at an enormous rate, so what does the future hold?

Play
See all Panel Sessions videos >>
ARN news
Play
See all news >>
Channel Watch
Play
See all Channel Watch videos >>
Business Continuity & Disaster Recovery Zone

When an IT disaster occurs, how handy it would be to push a button and start again as if nothing had happened.
Discover and learn more about CA XOSoft today.
ARN Distributor Directory
 
Find distributors by name
Find distributors by vendor
Find distributors by location
ARN Vendor Directory
 
Find vendors by name | Find by category
Get a job Careerone
ARN Library


Read Material

WebCentral boosts Security and Reliability with Windows Server 2008

WebCentral, Australia's largest web and application hosting company, relies on Microsoft Windows Server 2008 to deliver the security, manageability and reliability their customers require.

Sponsored Links