Archives
Archives
| From: | Dirk Uys <dirkcuys@×××××.com> | ||
|---|---|---|---|
| To: | gentoo-user@l.g.o | ||
| Subject: | Re: [gentoo-user] DNS poisoning fix | ||
| Date: | Thu, 10 Jul 2008 13:50:09 | ||
| Message-Id: | 79e3aefb0807100650w70a5b5c8l669727bb4f626803@mail.gmail.com | ||
| In Reply to: | Re: [gentoo-user] DNS poisoning fix by Dave Oxley |
||
| 1 | On Thu, Jul 10, 2008 at 3:35 PM, Dave Oxley <dave@××××××××××××.uk> wrote: |
| 2 | > I've installed 9.4.2-P1 but http://www.doxpara.com/ says I'm still |
| 3 | > vulnerable. What more do I need to do? |
| 4 | > |
| 5 | > Cheers, |
| 6 | > Dave. |
| 7 | > |
| 8 | > Mick wrote: |
| 9 | >> |
| 10 | >> Hi All, |
| 11 | >> |
| 12 | >> Have you seen this? |
| 13 | >> |
| 14 | >> |
| 15 | >> http://uk.news.yahoo.com/afp/20080709/ttc-us-it-internet-software-crime-e0bba4a.html |
| 16 | >> |
| 17 | >> and this? |
| 18 | >> |
| 19 | >> http://www.doxpara.com/ |
| 20 | >> |
| 21 | >> Is it merely a matter of using the right version of bind (for those who |
| 22 | >> run a bind daemon locally), or does it go further than that? |
| 23 | >> |
| 24 | > |
| 25 | > -- |
| 26 | > gentoo-user@l.g.o mailing list |
| 27 | > |
| 28 | > |
| 29 | |
| 30 | I think if your DNS server forwards a DNS query to any other server |
| 31 | that is not yet patched, you are still vulnerable. |
| 32 | |
| 33 | Complain to your ISP or forward DNS requests to different name servers. |
| 34 | |
| 35 | Hope this helps |
| 36 | Dirk |
| 37 | -- |
| 38 | gentoo-user@l.g.o mailing list |