[techsec-wg] Re: [dns-wg] What about the last mile, was: getting DNSSEC deployed

Previous message: [techsec-wg] Re: [dns-wg] What about the last mile, was: getting DNSSEC deployed

Next message: [techsec-wg] Re: [dns-wg] What about the last mile, was: getting DNSSEC deployed

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jaap Akkerhuis jaap at NLnetLabs.nl
Fri Feb 16 13:46:38 CET 2007

    
    NEW ATTACK TECHNIQUE THREATENS BROADBAND USERS
    Millions of high-speed Internet users across the globe are threatened
    by a new attack technique called drive-by pharming, Symantec and
    Indiana University researchers warned Thursday.
    http://go.techtarget.com/r/1004039/1401570

This method is variation on the team to users equipment as a
coprocessor. In this case, a java applet tries to guess the passwd
of the users adsl router and then reconfigures the dns server in the
box. Most users have not chnged the original passwd (if an) or use an
easy tp gues one. More details got dicussed on nanog.

    On the practical note, I need to say something definite to my
    students what DNS experts think?

Tell then to switch of java etc. :-).
As noted, dnssec can protect against spoofed dns info.

	jaap

Previous message: [techsec-wg] Re: [dns-wg] What about the last mile, was: getting DNSSEC deployed

Next message: [techsec-wg] Re: [dns-wg] What about the last mile, was: getting DNSSEC deployed

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ techsec-wg Archives ]