[techsec-wg] Re: What about the last mile, was: getting DNSSEC deployed
Stephane Bortzmeyer bortzmeyer at nic.fr
Fri Feb 16 13:57:18 CET 2007
On Fri, Feb 16, 2007 at 12:07:45PM +0100, Yuri Demchenko <demch at chello.nl> wrote a message of 110 lines which said: > What does DNSSEC and Techsec-WG people think about recently revealed > pharming attack technique that is based on the end user DNS > altering? I really wonder why do all newspapers present it as a DNS attack. It is an attack against a server (the home router). Once you control it, you can do many things besides changing the DNS configuration (such as setting up a tunnel and diverting all IP data through it, so DNSSEC would be screwed, anyway). > On the practical note, I need to say something definite to my > students what DNS experts think? As I said, the DNS is not involved at all in this attack.