| |newviewEx .. Ex .. ExactlyPremium
Once again . . . greed places users at a security risk.
| |RobIn Deo speramus.Premium
OpenDNS.. If the reports are legit, then this makes OpenDNS unsafe and hazardous to its users, since it also employs a DNS Redirection service in place of the old "page not found" errors.
said by Rob:But they don't make the page look like the original site. They identify that it is Opendns and not the ISPs or paypal or amazon, etc.
If the reports are legit, then this makes OpenDNS unsafe and hazardous to its users, since it also employs a DNS Redirection service in place of the old "page not found" errors.
Anyone can also use OpenDNS, a start-up that also provides ad pages on domains that don't resolve, but does so without pretending to be the other site.And since ANY web site can be hacked, a vulnerability still exists, but one no different than if amazon or paypal itself had been hacked.
My BLOG .. .. Internet News .. .. My Web Page
| || I too use OpenDNS so I did some searching:|
This is a quote from an article posted on April 7, 2008
"On Tuesday, OpenDNS will offer users of its free service a way to prevent this type of attack, and the company will also set up a Web site that will use Kaminsky's techniques to give users a way to change the passwords of vulnerable routers."
I will be checking on this.
Re: OpenDNS.. TK,
Thanks for the link!
North Richland Hills, TX
ISP Error Opens Security Holes in Web just one more reason the ISP'S should not be allowed to break DNS. Or modify pages. or forge packets.
And it should be made LAW and fined accordingly when caught doing so.
Use Firefox Why not just use Firefox, with Adblock, Flashblock and Noscript extensions installed? That takes care of the great majority of security attacks from websites, since they can't really display anything that's dangerous.
Re: Use Firefox Because this is about DNS vulnerabilities and Firefox just like every other program that accesses the internet uses DNS to resolve names to addresses.
said by AnonymousDolphin :...then why not go back to text-only browsing??? Disabling add-ons is just a band-aid, the real solution is re-writing the software from ground-up with security in mind.
Why not just use Firefox, with Adblock, Flashblock and Noscript extensions installed? That takes care of the great majority of security attacks from websites, since they can't really display anything that's dangerous.
DNS Redirection Users CAN change their DNS manually to some other ISP's DNS server though, if my ISP used this type of DNS redirection I would switch my servers to another ISP's.
this redirection is more of an annoyance than a security threat.
for those who don't know how to handle ads and suspicious pages they're screwed already because they're bound to find other non-safe sites on the web, unlike the redirection which is safe in comparison.
for those like us, its just an annoyance because we make a typo in an address and then think some company bought the domain, a domain exists when it shouldn't, or my computer has been infected to redirect invalid addresses.