| Quick Responses - Teksavvy Proof as to why Teksavvy is a great ISP - we posted in their forum on DSLR yesterday and by midnight they had applied the patches. That is service ! |
|
| said by shopkins:Proof as to why Teksavvy is a great ISP - we posted in their forum on DSLR yesterday and by midnight they had applied the patches. That is service ! Better that the problem was avoided all together like the OpenDNS service did. If you used OpenDNS for your DNS servers you never were exposed at all.
More info on this security issue here in the BBR Security forum: »Internet flaw could let hackers take over the Web
--
My BLOG .. .. Internet News .. .. My Web Page |
|
|
|
Reviews:
 ·TekSavvy DSL
| True - apparently the potential exploit of the flaw has been known for a while (recall reading a comment that the DNS system has been known to be broken for a while). OpenDNS is a good solution for someone with some knowledge but I am pretty sure that the big ISP's (Bell, Telus & Rogers in Canada) would not pre-configure their service to use someone else's DNS. And 99% of internet users would never even want to fiddle with those setting... unlike those of us here on DSLR that have a higher comfort level with these changes.
Unsure exactly what TekSavvy did to patch their system but I would guess (since they said that they are not on an MS system) that they upgraded their BIND from v8 to v9. But that is pure speculation because I can honestly say that I do not know what that last sentence implies wrt ease of an upgrade  |
|
 RobIn Deo speramus, God Bless the USAPremium
join:2001-08-25
Kendall, FL
kudos:2
1 edit | reply to fAcEtIOUs
said by fAcEtIOUs:said by shopkins:Proof as to why Teksavvy is a great ISP - we posted in their forum on DSLR yesterday and by midnight they had applied the patches. That is service ! Better that the problem was avoided all together like the OpenDNS service did. If you used OpenDNS for your DNS servers you never were exposed at all. More info on this security issue here in the BBR Security forum: » Internet flaw could let hackers take over the Web Not to take credit away from OpenDNS, but shopkins is referring to an ISP.
When was the last time you saw an ISP be so proactive and respond so quickly to these type of issues? I know I haven't. It's good to see TekSavvy be so quick to respond and update their systems - high five to them. |
|
| reply to shopkins
said by shopkins:Proof as to why Teksavvy is a great ISP - we posted in their forum on DSLR yesterday and by midnight they had applied the patches. That is service ! They are.
"Gee, when I went to Vatican.org, I wound up at girlsgonewild.com. Weird! Girls didn't do that stuff at my college." -Pope Benedict
--
Saving the world keeps me busy. However, I find Earth very primitive from my home planet of Krypton.
-Supergirl |
|
 en102Canadian, eh?
join:2001-01-26
Valencia, CA | reply to Rob
DSL Extreme has been typically quick to respond.. however, they also did attempt to install Zone finder once.
--
Canada = Hollywood North |
|
| reply to fAcEtIOUs
said by fAcEtIOUs:Better that the problem was avoided all together like the OpenDNS service did. That's because OpenDNS's systems uses a non-standard, in-house product for their DNS services.
--
---
Over ten plus years of carrying The Clue Bat... |
|
 dvd536as Mr. Pink as they comePremium
join:2001-04-27
Phoenix, AZ
kudos:4 | is there a PoC somewhere you can test your providers servers at? |
|
| said by dvd536:is there a PoC somewhere you can test your providers servers at? There is not one listed in the CERT advisories and I haven't seen anything on NANOG. The CERT advisory does give a list of affected products at the bottom of the notice:
»www.kb.cert.org/vuls/id/800113
--
---
Over ten plus years of carrying The Clue Bat... |
|
 sporkmedrop the crantini and move it, sisterPremium,MVM
join:2000-07-01
Morristown, NJ
 ·Optimum Online
| reply to shopkins
said by shopkins:True - apparently the potential exploit of the flaw has been known for a while (recall reading a comment that the DNS system has been known to be broken for a while). Sometimes the nutjobs are 100% right:
»cr.yp.to/djbdns/forgery-cost.txt |
|
