Be aware there is a DNS vulnerability out that can really compromise your personal information.
The official release can be found here:
http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/
For something that is a bit more user friendly to understand explains it:
http://www.scribkin.com/2008/06/13/my-isp-is-a-dns-sellout/
A tool to check your DNS from Dan who found the vulnerability is hosted at:
http://doxpara.com/
And if you use OpenDNS (like I started to a month ago, thanks J. Phil at skribkin) you should not have been affected:
http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/
Thanks to tsudohnimh who started the word on Friend Feed!
http://www.knowthenetwork.com/blog/?p=701
--
Brian
http://bmbufalo.blogspot.com
The official release can be found here:
http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/
For something that is a bit more user friendly to understand explains it:
just like Web sites being cached by your browser, DNS (DomainsOr get a great explanation of how DNS works (and can be evil and good) here:
resolving to specific IP addresses) is also cached. From this
vunerability, these "Caching Name Servers" can be easily hacked and
from there, you could have people on, say an entire ISP, going to
whatever site you wanted to. Think phishing, but on a MUCH larger
scale. - Tim Hoeck
http://www.scribkin.com/2008/06/13/my-isp-is-a-dns-sellout/
A tool to check your DNS from Dan who found the vulnerability is hosted at:
http://doxpara.com/
And if you use OpenDNS (like I started to a month ago, thanks J. Phil at skribkin) you should not have been affected:
http://blog.opendns.com/2008/07/08/opendns-proven-to-be-the-most-secure-dns/
Thanks to tsudohnimh who started the word on Friend Feed!
http://www.knowthenetwork.com/blog/?p=701
--
Brian
http://bmbufalo.blogspot.com
