Extra Feeds & Services »

Home / News

Proposed "One-Character Patch" for DNS Has Serious Side Effects

  • Aug 31, 2008 9:32 AM PDT
  • Comments: 0
  • Views: 3,171
Print Comment
SecurityFocus

Last week a DNS researcher proposed a method to limit the DNS cache poisoning attacks by addition of a single character to the popular BIND name server software.

Robert Lemos of SecurityFocus reports: By changing a '<' to '<=' in a trust check in the Berkeley Internet Name Domain (BIND) server software, the patch would prevent a previously unknown server from poisoning the cache, unless the time to live (TTL)—a limit on the age of a name server entry—had expired. The suggestion, made by computer scientist Gabriel Somlo, would make exploitation of name server caches more difficult. However, the "one-character patch" also has some serious side effects, Dan Kaminsky..."

Read full story: SecurityFocus

Related topics: DNS, Security

Get a weekly summary of postings to CircleID:

 Master Feed (more feeds)      Twitter      Mobile
Bookmark / Email This Post
Print Comment

Comments

To post comments, please login or create an account.

Related Blogs

Perspectives on a DNS-CERT

  • Mar 16, 2010
  • Comments: 0

Another One (Partially) Bites the Dust

  • Mar 12, 2010
  • Comments: 0

Authorities Take Down the Mariposa Botnet

  • Mar 05, 2010
  • Comments: 0

Closing in on the Google Hackers

  • Feb 25, 2010
  • Comments: 2

Switching on the Light: Expression of Interest for New TLDs

  • Feb 25, 2010
  • Comments: 0
View More

Related News

Memory Cards of 3,000 Vodafone Mobiles Infected With Malware

  • Mar 19, 2010
  • Comments: 0

German High Court Says No to Retaining Telecom, Email Data for Tracking Criminal Networks

  • Mar 02, 2010
  • Comments: 0

Comcast Announces Aggressive Plan to Deploy DNSSEC, Launches First Public Trial

  • Feb 23, 2010
  • Comments: 0

How IT and Internet Saved Lives in Haiti

  • Feb 17, 2010
  • Comments: 0

Google Dumps Illicit Pharmacy Advertisements

  • Feb 10, 2010
  • Comments: 0
View More

Other Topics

Access Providers Broadband Censorship Cloud Computing Cyberattack Cybercrime Cybersquatting Data Center DNS DNSSEC Domain Names Domain Registries Email Enum ICANN Internet Governance Internet Protocol IP Addressing IPTV IPv6 Law Malware Mobile Multilinguism Net Neutrality P2P Policy & Regulation Privacy Regional Registries Security Spam Telecom Top-Level Domains VoIP Web White Space Whois Wireless
View More

Industry Updates – Sponsored Posts

MarkMonitor Year in Review Report: How Escalating Online Brand Abuse is Used to Monetize Web Traffic

.ORG to Fully Deploy DNSSEC in June

  • By PIR
  • Views: 559

The GLOBE Program Chooses Dyn Inc.'s Dynect Platform to Deploy DNSSEC per Federal OMB Mandate

SPECIAL: Updates from the ICANN Meetings in Nairobi

MarkMonitor Sets New Standard in Brand Protection with Site Staydown Service

ICANN and Cybersecurity: Hot Topics at The First Ever .ORG Forum

  • By PIR
  • Views: 1,821

Neustar Releases UltraDNS Report Center

Neustar Implements DNS Security Extensions in the .US Registry

Neustar Launches Initiative to Enhance DNS With Faster, More Secure Updates

Registry Stakeholder Group Comments on Latest ICANN Policies

  • By PIR
  • Views: 2,050

Open Phishing Season

Nominum Announces "DNSSEC Made Easy" Solutions

.ORG Highlighted for Success in Fighting Phishing

  • By PIR
  • Views: 2,320

Afilias' Matt Pounsett Elected Director-at-Large for DNS-OARC

SPECIAL: Updates from the ICANN Meetings in Seoul

.ORG Wins WebAward for Website Redesign and Selected as a Finalist for the NonProfit PR Awards

  • By PIR
  • Views: 2,168

SEO Poisoning: A Persistent Malware Threat Targeting High-Profile Brands

NeuStar Expands UltraDNS Network Infrastructure in Europe

Nominum CEO: Commercial vs. Open Source - Let Customers Choose

Pharmaceutical Brandjacking for Popular Drug Brands on the Rise

View More