DNS

Fun with UDP conflicts and DNS port randomization

September 18, 2009

If you running a Windows server there is a good chance that you will some day encounter a conflict when a particular service tries to start and it will state that the UDP port is already in use. If you run a report to see what service is currently using that port there is a [...]

Read the full article →

Major DNS vulnerability discovered – PATCH TODAY!

July 9, 2008

A major vulnerability in DNS (Domain Naming Service) has been discovered. It is within the protocol of DNS itself and therefore affects all vendors of DNS server and DNS client products. Dan Kaminsky discovered the vulnerability and through responsible disclosure has been working behind the scenes to coordinate a multivendor patch release. It is critical [...]

Read the full article →

BH Review – Anti-DNS Pinning

August 19, 2007

Intranet Invasion With Anti-DNS Pinning | David Byrne One of the best talks I attended at Blackhat was David Byrne’s “Intranet Invasion With Anti-DNS Pinning” Essentially this attack circumvents web browser DNS pinning in order to attack an intranet server. Note the word “INTRANET” meaning internal network. The presentation is a wonderful read. Excellent Work.

Read the full article →

OpenDNS

April 25, 2007

Perhaps I’m a bit late to the party but I’ve been testing OpenDNS. OpenDNS is a public DNS server system that purports to have some of the largest DNS caches on the internet, provide protection from phishing sites, and even correct some URL typos. I added OpenDNS’ external IP’s (208.67.222.222, 208.67.220.220)as my primary and secondary [...]

Read the full article →