Re: Anti-DNS pinning & DNS-rebinding attacks! - dslreports.com

republican-creole			Search:
	login · register

	All Forums		Hot Topics		Gallery

how-to block ads

Forums » Up and Running » Security » Security » Anti-DNS pinning & DNS-rebinding attacks!


Search Topic:	Share Topic:	RSS topic:	toggle: flat / full normal / watch	Posting:	Post a:	Post a:

Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal

Belarc Advisor / Missing Security Updates »
« Storm worm seems to be fading away

Author

All Replies

swhx7
Premium
join:2006-07-23
Elbonia

·RoadRunner Cable

reply to jansson_mark
Re: Anti-DNS pinning & DNS-rebinding attacks!

Good stuff jansson_mark. The pdf is fascinating.

Browsers are supposed to protect against this by "pinning", i.e. requiring the IP-to-domain-name match-up to remain the same for an interval. But Jackson et al. in the pdf make clear that the major browsers don't do this very well. So even without plugins, there are some big gaps.

You can protect against outside access to other LAN devices by hardening within the LAN and by patching your firewall to not allow external names to resolve to internal addresses. But the browser can still be expoited to send spam or direct attacks at other external computers in which case the victim will appear responsible.

There's more I haven't read yet. Mozilla, Microsoft, Apple and Opera need to get on this.

to forum · permalink ·

· 2007-08-03 15:29:22 ·

Topic: Follow · Sitemark · Mark Unread

Forums » Up and Running » Security » Security	Belarc Advisor / Missing Security Updates » « Storm worm seems to be fading away


Sunday, 29-Nov 08:42:30	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF

Most commented news this week
· [122] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [80] TiVo Sees Record Customer Losses
· [73] Verizon CEO: Hulu Will Be Dead Soon
· [73] Weekend Open Thread
· [69] In-Flight Internet Headed For Bumpy Landing?
· [62] Thanksgiving Open Thread
· [40] EFF Wages War On Fine Print

Most people now reading
· AV-Comp. Retrospective/Proactive Test 11/2009 released [Security]
· ToC 4th boss - Preliminary Strategy for Twin Valkyr [World of Warcraft]
· [Snow Leopard] NFS Mounts - no more Directory Utility [All Things Macintosh]
· Windows 7 boot manager editing questions [Microsoft Help]
· [Future9] Future9 status [VOIP Tech Chat]
· Maximizing Rogue DPS for 3.1 [World of Warcraft]
· DIR-655 New Beta 1.32b09 [D-Link]
· I need a DID Hosting service [VOIP Tech Chat]
· Windows 7 - Dell ALPS Touchpad driver [Microsoft Help]