DNS Recursion - FAIL - Open DNS ServersDNS Recursion - Open DNS Servers



"On 2008 July 08, Tuesday, technology vendors from across the industry will simultaneously release patches for their products to close a major vulnerability in the underpinnings of the Internet. While most home users will be automatically updated, it's important for all businesses to immediately update their networks.

This is the largest synchronized security update in the history of the Internet, and is the result of hard work and dedication across dozens of organizations."

"An attacker with the ability to conduct a successful cache poisoning attack can cause a nameserver's clients to contact the incorrect, and possibly malicious, hosts for particular services. Consequently, web traffic, email, and other important network data can be redirected to systems under the attacker's control."

Further Discussion at WebmasterWorld...

Previous DNS Recursion Coverage

On 2006 March 13, Monday, we posted a topic at WebmasterWorld concerning a threat that has been lying dormant for years and has now become a mainstream concern. It all has to do with your DNS servers and recursion, specifically allowing non-authoritative DNS queries. Most may not need to be concerned with this, but those who fail should definitely address the problem.

"One or more of your name servers reports that it is an open DNS server. This usually means that anyone in the world can query it."

Are your DNS Servers open for DNS Recursion? Run a DNS Report and find out.

Open DNS Servers - Katrina of Internet Storms

2008 News on DNS Recursion

2006 News on DNS Recursion

2005 News on DNS Recursion


 


SEO Consultants Directory