 |
|
|
|
|
|
| |
|
|
|
|
| Date: Wednesday, January 07, 2009 |
| Website tests in the last week: |
| 1041924 |
| Errors detected in the last week: |
| 29024 |
| |
|
|
|
|
|
|
'Time to take action' says DNS inventor | | 2008/08/14 | | Paul Mockapetris, the inventor of the Domain Name System (DNS), has urged Internet Service Providers (ISPs) to "take action and add more security" following Dan Kaminsky's publication of details about the notorious flaw that currently plagues the system.
Speaking to ZDNet, he said that placing more emphasis on the launch of DNS, rather than thinking as deeply as the team perhaps should have about what security to install, had led to an error of judgement in 1983, when it was created.
"Times have changed. Originally security wasn't built in, it was a simpler time," he told ZDNet.
The biggest and most concentrated combined effort ever instigated by several top companies in the field followed Mr Kaminsky's discovery of the DNS hole but many of the first patches were found to be in adequate.
"The attack was a new virulent strain of an old attack, it acts more quickly," continued Mr Mockapetris. "What Dan [Kaminsky] did was to attack more speedily.
Mr Mockapetris said that, to mitigate the effects of Kaminsky's flaw, many were using port randomisation.
"Randomisation is still a probabilistic defence."
"A simple explanation is that it's like playing Russian roulette but what we need to do is figure out a way of taking the bullet out of the gun," he said. |
ALL RELATED ARTICLESAll Web Site & Server Security news
| | | RECENT RELATED ARTICLES | | Microsoft releases IE fix - 2008/12/18 Microsoft has released a patch to fix a vulnerability in Internet Explorer (IE) which has caused problems for more than two million users. ... | | | | Credit crunch 'will affect security' - 2008/11/27 Businesses' IT security will be affected by the credit crunch, an expert has claimed. ... | | | | Trojan virus steals on an unprecedented scale - 2008/11/04 A new Trojan virus has stolen data from half a million bank records, according to a leading internet security firm. ... | | | | Virgin Media suffer email 'spam attack' - 2008/10/14 Thousands of Virgin Media customers have been virtually cut off from their email accounts for up to four days, it has been reported.
A mass spamming attack rendered as many as ... | | | | FBI begins hunt for European retail hackers - 2008/10/07 The US Federal Bureau of Investigations (FBI) has gone on the hunt for two Europe-based hackers who have made several attacks against online retailers, it has emerged. ... | | |
|
|
|
|
|
