Old news - dslreports.com

Author	All Replies
raye Premium join:2000-08-14 Orange, CA	Old news Talked about by Dan Kaminsky at Toorcon conference Sand Diego this past October. Think it was also mentioend at BlackHat/Defcon in Vegas last August.
	to forum · permalink · · 2007-12-12 19:42:56 ·
lordofwhee join:2007-10-21 Everett, WA	This is even older than that. This kind of attack has been around for at least a year before the last Defcon, probably longer. It's already a well-established attack among the old-time favorites such as SQL injection, at least in the various groups I know/am a part of.
	to forum · permalink · · 2007-12-12 20:46:41 ·
swhx7 Premium join:2006-07-23 Elbonia ·RoadRunner Cable	reply to raye Can you explain more about it? The article is vague. Is it a hack on the DNS servers, or ActiveX or other executable changing the client's DNS to one the attacker controls, or a combination of the two, or something else? And how is it a new type of attack rather than the already-known DNS exploits? Posters at the Ars Technica thread discussed the possibilities today.
	to forum · permalink · · 2007-12-12 22:33:46 ·
TKJunkMail Enjoy the sun Premium join:2002-03-03 Avalon, NJ ·Sprint Mobile Broa.. ·Comcast	said by swhx7 : And how is it a new type of attack rather than the already-known DNS exploits? I don't think it is really all that new. But the scale of the attack with 68,000 DNS servers that are compromised. And the combo of compromised DNS servers and the hack attacks on PC's to point to those servers.
	to forum · permalink · · 2007-12-12 23:05:24 ·
BosstonesOwn join:2002-12-15 Everett, MA clubs:	reply to raye I have preached about it for more then a couple years. This isn't new , I have seen a couple examples of this before. -- "It's always funny until someone gets hurt......and then it's absolutely friggin' hysterical!"
	to forum · permalink · · 2007-12-13 10:15:25 ·
raye Premium join:2000-08-14 Orange, CA	reply to swhx7 As someone mentioned it goes back further than the presentations I mentioned. I recommend going to the BlackHat site and downloading the relevant paper/presentations. »www.blackhat.com/html/bh-media-a···007.html Dan Kaminsky's paper. I have the video from Dan's more extended talk at Toorcon which shows how to exploit step-by-step. You might be able to order it as I did. The link for the paper is at »www.blackhat.com/html/bh-media-a···007.html
	to forum · permalink · · 2007-12-13 13:45:22 ·


Thursday, 26-Nov 18:37:48	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. republican-creole page compression OFF