1. QUOTE from:
    DNS Exploit Means Quick Patches Are Critical
    View quote in context »
    The client will accept any packet as an answer to its question on three conditions: the packet is coming from the DNS server, the source and destination ports match the destination and source ports of the question packet and, most importantly, the transaction ID and question match its question. "An attacker can spoof such an answer packet as long as he can pretend to be the DNS server and also guess the source port and transaction ID (the destination port is usually 53) ... The attacker also needs to make sure his spoofed answer packet reaches the client before the actual answer packet from the legitimate DNS server." Complicating matters, when a DNS server replies to a question, it can also include additional information in the answer to make future processes more efficient. Full Article at NewsFactor Network
    An attacker can spoof such an answer packet as long as he can pretend to be the DNS server and also guess the source port and transaction ID (the destination port is usually 53) ... The attacker also needs to make sure his spoofed answer packet reaches the client before the actual answer packet from the legitimate DNS server.
    SOURCE: NewsFactor Network 16 months ago
All quotes from:
DNS Exploit Means Quick Patches Are Critical
  1. Everything that uses DNS needs to be patched; desktop PCs, servers, routers, switches, firewalls and mainframes, and every vendor [like] Cisco, Sun, Microsoft and Apple ... Basically, this patch impacts the entire network from soup to nuts.
    SOURCE: NewsFactor Network 16 months ago
  2. Now that the exploit code has been released, many companies that simply cannot patch inside a small timeframe are redirecting their attention to workarounds and secondary risk-reduction methodologies, such as deployment of entirely new DNS servers for Internet DNS queries or temporary outsourcing of DNS...
    SOURCE: NewsFactor Network 16 months ago
  3. If an attacker is successful in predicting the source port and transaction ID, and also inserts the additional information into the spoofed answer packet with the DNS servers pointing to the IP of his evil DNS server, he can control the traffic directed for bob.com domain
    SOURCE: NewsFactor Network 16 months ago

Recent Photos From The Wire

  1. New York Islanders' John Tavares (L) fights off a check from Toronto Maple Leafs' Matt Stajan in front of the Leafs' net during the first period of their NHL hockey game in Toronto November 23, 2009.
  2. New York Islanders' John Tavares (R) battles for the puck against Toronto Maple Leafs' Ian White in the first period of their NHL hockey game in Toronto November 23, 2009.
  3. New York Islanders' John Tavares (L) fights off a check from Toronto Maple Leafs' Mikhail Grabovski in the first period of their NHL hockey game in Toronto November 23, 2009.
  4. DUNEDIN, NEW ZEALAND - NOVEMBER 24: Mohammad Asif of Pakistan claps after Martin Guptill of New Zealand ducked under a bouncer during day one of the First Test match between New Zealand and Pakistan at University Oval on November 24, 2009 in Dunedin, New Zealand.
  5. DUNEDIN, NEW ZEALAND - NOVEMBER 24: Mohammad Asif of Pakistan claps after Martin Guptill of New Zealand ducked under a bouncer during day one of the First Test match between New Zealand and Pakistan at University Oval on November 24, 2009 in Dunedin, New Zealand.
  6. DUNEDIN, NEW ZEALAND - NOVEMBER 24: Umar Gul of Pakistan shows his frustration during day one of the First Test match between New Zealand and Pakistan at University Oval on November 24, 2009 in Dunedin, New Zealand.
  7. DUNEDIN, NEW ZEALAND - NOVEMBER 24: Mohammad Aamer of Pakistan looks on with his team during day one of the First Test match between New Zealand and Pakistan at University Oval on November 24, 2009 in Dunedin, New Zealand.
  8. DUNEDIN, NEW ZEALAND - NOVEMBER 24: Mohammad Aamer of Pakistan appeals for an lbw during day one of the First Test match between New Zealand and Pakistan at University Oval on November 24, 2009 in Dunedin, New Zealand.
  9. A pair of champagne-coloured high heel shoes are worn by U.S. first lady Michelle Obama during the presentation of the 2009 Robert F. Kennedy Human Rights Award to Magodonga Mahlangu and her organization Women of Zimbabwe Arise, during a ceremony in the East Room of the White House in Washington November 23, 2009.
  10. SUNRISE, FL - NOVEMBER 23: Goaltender Marc-Andre Fleury #29 of the Pittsburgh Penguins warms up prior to the game against the Florida Panthers on November 23, 2009 at the BankAtlantic Center in Sunrise, Florida.
  11. The recipients of the 2009 Robert F. Kennedy Human Rights Award Jenni Williams (L) and Magodonga Mahlangu, both of the human rights organization Women of Zimbabwe Arise, pose with their awards after presentation by U.S. President Barack Obama in the East Room of the White House in Washington November 23, 2009.
  12. Ethel Kennedy, widow of Robert F. Kennedy, applauds as U.S. President Barack Obama presents the 2009 Robert F. Kennedy Human Rights Award to Magodonga Mahlangu and her organization Women of Zimbabwe Arise, during a ceremony in the East Room of the White House in Washington November 23, 2009.
  13. Serbia's Novak Djokovic, right, swaps shirts with Russia's Nikolay Davydenko, left, after their ATP World Tour Finals tennis match at the O2 Arena in London, Monday Nov. 23, 2009.
  14. Serbia's Novak Djokovic celebrates winning his ATP World Tour Finals tennis match against Russia's Nikolay Davydenko at the O2 Arena in London, Monday Nov. 23, 2009.
  15. Serbia's Novak Djokovic celebrates winning his ATP World Tour Finals tennis match against Russia's Nikolay Davydenko at the O2 Arena in London, Monday Nov. 23, 2009.
  16. Serbia's Novak Djokovic reacts during his ATP World Tour Finals tennis match against Russia's Nikolay Davydenko at the O2 Arena in London, Monday Nov. 23, 2009.
  17. Serbia's Novak Djokovic serves to Russia's Nikolay Davydenko during their ATP World Tour Finals tennis match at the O2 Arena in London, Monday Nov. 23, 2009.
  18. Serbia's Novak Djokovic serves to Russia's Nikolay Davydenko during their ATP World Tour Finals tennis match at the O2 Arena in London, Monday Nov. 23, 2009.