republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » ISP Error Opens Security Holes in Web
Search Topic:
view: topics flat text 
Post a:

Comments on news posted 2008-04-20 10:53:39: A money-generating trend that has cropped up in the last year is for ISPs to use DNS redirection services to replace the old “page not found” error sites with sites full of advertising. ..

AuthorAll Replies


newview
Ex .. Ex .. Exactly
Premium
join:2001-10-01
Parsonsburg, MD		Once again . . .

greed places users at a security risk.
to forum · permalink · · 2008-04-20 10:58:35 · Reply to this


Rob
In Deo speramus, God Bless the USA
Premium
join:2001-08-25
Kendall, FL
1 edit		OpenDNS..

If the reports are legit, then this makes OpenDNS unsafe and hazardous to its users, since it also employs a DNS Redirection service in place of the old "page not found" errors.
to forum · permalink · · 2008-04-20 11:34:47 · Reply to this


koma3504
Advocate
Premium
join:2004-06-22
North Richland Hills, TX		ISP Error Opens Security Holes in Web

just one more reason the ISP'S should not be allowed to break DNS. Or modify pages. or forge packets.
And it should be made LAW and fined accordingly when caught doing so.
to forum · permalink · · 2008-04-20 11:36:09 · Reply to this


AnonymousDolphin

@comcast.net		Use Firefox

Why not just use Firefox, with Adblock, Flashblock and Noscript extensions installed? That takes care of the great majority of security attacks from websites, since they can't really display anything that's dangerous.
to forum · permalink · 2008-04-20 12:31:35 · Reply to this


TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
·Sprint Mobile Broa..
·Comcast

1 edit		reply to Rob
Re: OpenDNS..

said by Rob See Profile :

If the reports are legit, then this makes OpenDNS unsafe and hazardous to its users, since it also employs a DNS Redirection service in place of the old "page not found" errors.
But they don't make the page look like the original site. They identify that it is Opendns and not the ISPs or paypal or amazon, etc.

»blog.wired.com/27bstroke6/2008/0···age.html
Anyone can also use OpenDNS, a start-up that also provides ad pages on domains that don't resolve, but does so without pretending to be the other site.
And since ANY web site can be hacked, a vulnerability still exists, but one no different than if amazon or paypal itself had been hacked.
--
My BLOG .. .. Internet News .. .. My Web Page
to forum · permalink · · 2008-04-20 17:20:32 · Reply to this


nohelpWA

join:2001-12-06
Federal Way, WA

reply to Rob
I too use OpenDNS so I did some searching:

This is a quote from an article posted on April 7, 2008
»www.networkworld.com/news/2008/0···can.html

"On Tuesday, OpenDNS will offer users of its free service a way to prevent this type of attack, and the company will also set up a Web site that will use Kaminsky's techniques to give users a way to change the passwords of vulnerable routers."

I will be checking on this.
to forum · permalink · · 2008-04-20 17:44:24 · Reply to this


TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
·Sprint Mobile Broa..
·Comcast
said by nohelpWA See Profile :

I too use OpenDNS so I did some searching:

This is a quote from an article posted on April 7, 2008
»www.networkworld.com/news/2008/0···can.html

"On Tuesday, OpenDNS will offer users of its free service a way to prevent this type of attack, and the company will also set up a Web site that will use Kaminsky's techniques to give users a way to change the passwords of vulnerable routers."

I will be checking on this.
You can get details on this new feature at Opendns and how to use it here:
»blog.opendns.com/2008/04/14/fina···attacks/
--
My BLOG .. .. Internet News .. .. My Web Page
to forum · permalink · · 2008-04-20 18:19:08 · Reply to this


nohelpWA

join:2001-12-06
Federal Way, WA		 TK,
Thanks for the link!
to forum · permalink · · 2008-04-21 02:11:41 · Reply to this

CWO333

join:2005-02-24
Chicago, IL		reply to AnonymousDolphin
Re: Use Firefox

Because this is about DNS vulnerabilities and Firefox just like every other program that accesses the internet uses DNS to resolve names to addresses.
to forum · permalink · · 2008-04-21 03:50:33 · Reply to this


ThoughT2010

@sonotechnique.ca

DNS Redirection

Users CAN change their DNS manually to some other ISP's DNS server though, if my ISP used this type of DNS redirection I would switch my servers to another ISP's.

this redirection is more of an annoyance than a security threat.

for those who don't know how to handle ads and suspicious pages they're screwed already because they're bound to find other non-safe sites on the web, unlike the redirection which is safe in comparison.

for those like us, its just an annoyance because we make a typo in an address and then think some company bought the domain, a domain exists when it shouldn't, or my computer has been infected to redirect invalid addresses.
to forum · permalink · 2008-04-21 07:55:46 · Reply to this


cowboyro

join:2000-10-11
Shelton, CT
·AT&T U-Verse
·Comcast
·Optimum Voice

reply to AnonymousDolphin
Re: Use Firefox

said by AnonymousDolphin :

Why not just use Firefox, with Adblock, Flashblock and Noscript extensions installed? That takes care of the great majority of security attacks from websites, since they can't really display anything that's dangerous.
...then why not go back to text-only browsing??? Disabling add-ons is just a band-aid, the real solution is re-writing the software from ground-up with security in mind.
to forum · permalink · · 2008-04-21 10:40:55 · Reply to this
Forums » ISP Error Opens Security Holes in Web

Saturday, 05-Dec 12:04:58 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF