Re: Anti-DNS pinning & DNS-rebinding attacks! - dslreports.com

republican-creole			Search:
	login · register

	All Forums		Hot Topics		Gallery

how-to block ads

Forums » Up and Running » Security » Security » Anti-DNS pinning & DNS-rebinding attacks!


Search Topic:	Share Topic:	RSS topic:	toggle: flat / full normal / watch	Posting:	Post a:	Post a:

Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal

Belarc Advisor / Missing Security Updates »
« Storm worm seems to be fading away

Author	All Replies
swhx7 Premium join:2006-07-23 Elbonia ·RoadRunner Cable	reply to jansson_mark Re: Anti-DNS pinning & DNS-rebinding attacks! Good stuff jansson_mark. The pdf is fascinating. Browsers are supposed to protect against this by "pinning", i.e. requiring the IP-to-domain-name match-up to remain the same for an interval. But Jackson et al. in the pdf make clear that the major browsers don't do this very well. So even without plugins, there are some big gaps. You can protect against outside access to other LAN devices by hardening within the LAN and by patching your firewall to not allow external names to resolve to internal addresses. But the browser can still be expoited to send spam or direct attacks at other external computers in which case the victim will appear responsible. There's more I haven't read yet. Mozilla, Microsoft, Apple and Opera need to get on this.
swhx7 Premium join:2006-07-23 Elbonia ·RoadRunner Cable	to forum · permalink · · 2007-08-03 15:29:22 ·

Topic: Follow · Sitemark · Mark Unread

Forums » Up and Running » Security » Security	Belarc Advisor / Missing Security Updates » « Storm worm seems to be fading away


Thursday, 03-Dec 08:20:36	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF

Most commented news this week
· [162] Comcast Releasing Promised Usage Meter
· [101] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [86] Avast Antivirus Has Gone Mad
· [80] Latest Consumer Reports Survey Not Kind To AT&T
· [70] Baltimore To Ban Lazy Cable Installs
· [62] Broadband Killed The Game Console
· [55] Rogers Unveils The ISP Dream Model
· [47] ACTA: Global Three Strikes
· [41] Rural Carriers Quickly Embracing Fiber
· [40] Cable Industry's 'Adoption Plus': Altruism Or PR Stunt?

Most people now reading
· False positive in Avast! or is it real? [Security]
· Quality/longevity of 15A 120V receptacles [Home Repair & Improvement]
· [TWC] Audio/Video outage in Brooklyn [Time Warner Cable TV/Voice]
· [Rant] Disrespect of PTO [Rants, Raves, and Praise]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· Dead cable box? [Time Warner Cable TV/Voice]
· LFM Overkill [World of Warcraft]
· crack in trane xe80 heater exchange? [Home Repair & Improvement]
· How to create ISO with nero 8 [Software]
· Windows 7 boot manager editing questions [Microsoft Help]