Welcome to WebmasterWorld Guest from 54.196.243.192

Forum Moderators: bakedjake

Message Too Old, No Replies

DNS vulnerability 'critical'

control of any internet-connected application running on Unix

     
2:12 pm on Sep 5, 2002 (gmt 0)

Preferred Member

10+ Year Member

joined:Apr 17, 2002
posts:601
votes: 0


Nominum Inc says a recently discovered flaw in the dominant domain name server on the internet is far more serious than originally thought, and could allow crackers to crash or even take control of any internet-connected application running on Unix, Kevin Murphy writes.


[theregus.com...]

sorry if this has already been covered

2:37 pm on Sept 5, 2002 (gmt 0)

Senior Member

WebmasterWorld Senior Member tedster is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:May 26, 2000
posts:37301
votes: 0


DRV, a 1U appliance sits beside the DNS cache, inspects DNS messages for signs that they carry the malicious attack. If they do, it logs and blocks them...

The product is available to beta customers now, for $30,000.

Now there's a fix for you!

2:38 pm on Sept 5, 2002 (gmt 0)

Preferred Member

10+ Year Member

joined:Apr 17, 2002
posts:601
votes: 0


They said the bug is from the 80's, this just sounds like a get rich scheme to me.
3:00 pm on Sept 5, 2002 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Aug 10, 2001
posts:1550
votes: 10


VP of product management at Nominum, which has released a product that fixes the problem.

Honi soit qui mal y pense...

The bug in question dates back to the 1980s ... and still remains in most flavors of Unix, though Windows and Linux are unaffected.

Macs are safe as well. Which means that we're talking about a potential danger for roughly 0.35% of all computers out there, most of which already have patches available.

Yup, the urgency of Nominums $30,000.- workaround is really evident! ;)