The Measurement Factory and Infoblox today announced results of a survey of more than 1.3 million Internet-connected, authoritative domain name system servers around the globe. The results of the survey indicate that as many as 84 percent of Internet name servers could be vulnerable to pharming attacks, and that many exhibit other security and deployment-related vulnerabilities.
I think these security measures (limit recursion, zone transfers, etc…) are obvious. Aren’t they?
Can someone describe cache poisoning, how it happens, and why disabling recursive name resolution stops it? Please keep it simple too.
. Thanks in advance.
They certainly have the money and therefore the influence to succeed.
In the future our children will be searching for historical material on the Internet and will wonder how mean people could have been towards Mircosoft and its kind ways, centrlising money and ideas to help fight cancer, and finding a cure for death.
Reports will point to how innovative Microsoft has been by using patents to keep compatitors out, allowing greater room for innovation in their own time.
And other ridiculous but realistic N.Korea style ways…
Yet another bullshit …. alot of system admins dont know how to configure dns server this is a huge problem in ISPs even. Sorry but this is the main truth :-))).
Fight pharming and poisioning for your users, your homenetwork, or whatever, easily with dnscache:
<a href=”http://cr.yp.to/dnscache.html“>dnscache
Read the studies and whitepapers, and in the end, trust only a DNS that *you* have control over. This is what I’ve done with my network thanks to dnscache on my FreeBSD server serving dns to all of my clients.
fak3r
—
http://fak3r.com
I’m sick of the namings invented by these stupid idiots. Phishing was boring – pharming is stupid. What’s next? Phucking? If they’d fired their moronic marketing department and hired some real security experts instead maybe they would come up with better names. No – I am intentionally not talking about the content of the survey – I don’t consider stuff which is known since the last millennium newsworthy or interesting.
There was “phreaking” waaaaaay back in the day when early hackers would muck with AT&T switching networks to get phree long distance, etc.
I believe it was simply combining the words “phone” and “freak”.
Otherwise, you’re right, the “ph—” has become the new “X” or “Extreme” when every hot new thing had to have an X or Extreme at the end. Even Apple falls into this trap, but at least their products are interesting.
–JM