Slashdot Mirror

← Back to Stories (view on slashdot.org)

Dan Kaminsky Suggests Having Fun with DNS

Posted by timothy on from the bits-is dept.

boogahsmalls writes "A few weekends ago Dan Kaminsky of scanrand fame presented some pretty cool ideas involving DNS that made plenty of heads spin at the LayerOne Technology Conference. Some of his concepts included Voice over DNS and storing Knoppix in a DNS cache. He's also apparently got a couple new tools in the pipe including a scanrand based DNS scanner and a visualization suite. Could another version of Paketto Keiretsu be in the works?" (OpenOffice.org does a great job of opening the PowerPoint slideshow.)

18 of 212 comments (clear)

  1. No thanks, by Anonymous Coward · · Score: 5, Insightful

    I'd rather my dns just work.

  2. Great Article by Anonymous Coward · · Score: 5, Insightful

    It's a pity most of the slashdot crowd won't understand any of its technical merits at all.
    Mark this as flamebait if you will, but come back in a while and read the comments, I promise there will be hardly any discussion of the paper.

    Dan is obviously a very smart guy, I like his ideas about using http tunnel (it's a great program), I'm going to have to give some of these ideas a work out!

    Bob

    1. Re:Great Article by wwest4 · · Score: 4, Insightful

      The presentation is intriguing, but like any typical slideshow, lacking in specifics (things like "stuff=cool" aren't terribly telling). Unless you already know the DNS pretty well, it would be hard to infer the nitty-gritty of the talk from this ppt without thinking pretty hard about it, and you shouldn't fault a diverse group of geeks from different nerd realms for not being DNS power users.

    2. Re:Great Article by Anonymous Coward · · Score: 1, Insightful

      It's a pity most of the slashdot crowd won't understand any of its technical merits at all.

      I think it's a pity that I cannot even read his mertits in the first place due to the format he presents them in.

      Anyone care to convert this to HTML, or PDF even, so the rest of us can read it?

    3. Re:Great Article by Anonymous Coward · · Score: 1, Insightful

      no biggie - an apology is surely not neccessary, but surprising (for ./) and admirable.

    4. Re:Great Article by wwest4 · · Score: 2, Insightful

      One thing that is cool about /. is that if you're willing to dig for a bit, there are some crazy-smart people who know the material. There are plenty sympathetic to your lament also.

    5. Re:Great Article by Glamdrlng · · Score: 2, Insightful
      Merits? The guy is proposing a system for conducting conference calls through firewalls by hijacking DNS servers, and you can use the term "merits"?
      What you're overlooking is, if Dan could have these ideas, so could someone else. By sharing his ideas publically, he's giving whitehats and blackhats a level playing field.

      Consider also, many common auditing tools were once considered blackhat programs. For example, If Mr. Kaminsky had written scanrand in the late 90's / early 2000's, back when port scanning was considered an invasive hacking activity by most, it would have gotten the same treatment. Personally, I think we should thank him for sharing his ideas instead of using them against us.
      --

      Yes, my only tool is a hammer. And you're starting to look like a nail.
    6. Re:Great Article by Effugas · · Score: 2, Insightful

      Freaking Zalewski :-) I hadn't seen this paper. Super cool, it'll help the next version of this speech greatly!

      (I directly name Zalewski in one of my apps; believe me, if I had seen this, I'd have credited him.)

      --Dan

    7. Re:Great Article by Anonymous Coward · · Score: 1, Insightful

      set up a cryptographically secure network that most likely completely ignores firewalls.

      If I read that correctly, I think his assumption is incorrect - every corporate firewall (and many smaller firewalls) that I have seen use some kind of split horizon dns with http-proxies that rely on the external dns server to resolve external dns queries. DNS traffic in these set ups never cross from the DMZ into the corp net.

  3. Crazy! by chill · · Score: 5, Insightful

    Most people are lucky if DNS just works without major headaches.

    I could swear BIND and its config file is considered, along with Sendmail, one of the most convoluted programs in Internetdom. It, again along with Sendmail, is historically also one of the most bug-ridden and exploited.

    And now someone is suggesting futzing around with it?! Why not just change your domain to "rootmeplease.com" and get it over with?

    -Charles

    --
    Learning HOW to think is more important than learning WHAT to think.
  4. Re:RTFPP? by MisanthropicProgram · · Score: 2, Insightful
    Why is the parent flambait?

    He does have a point.

  5. Re:Win2k DNS by MisanthropicProgram · · Score: 2, Insightful
    Or...maybe he really doesn't understand. You see, kiddo, those of us who've been in this business for a decade or longer know that you can't know everything. Those who say they know everything or are experts are mistaken or lying. This biz is just too large and diverse to know everything.

    In other words kid, don't fuck with us old guys or we'll show you who knows shit!

  6. Yea baby! by stienman · · Score: 3, Insightful

    Ok, so let's do this:

    We've got the Kaminsky protocol connected to the
    DNS protocol
    the DNS protocol's connected to the
    UDP protocol
    The UDP protocol's connected to the
    IP protocol
    Oh hear the word of the inefficient!

    The second verse is left as an exercise for the reader. Please keep in mind that writing another verse is somewhat more productive than implementing the aforementioned Kaminsky protocol.

    -Adam

  7. Re:Some of this stuff really makes alot of sense by strabo · · Score: 4, Insightful
    DNS already has a mature, stable, and lightweight caching mechanism in place. Why not use it?

    What part of the word lightweight don't you understand?

  8. Re:Win2k DNS by silas_moeckel · · Score: 3, Insightful

    OK this is pretty OT as well but I'll have to agree to many people have no depth. But in reviewing a canidate it's generaly better to try and figure out how quickly they can get some depth. And knowing a little bit of everything and being able to go deaper quickly can make you a great CTO :) or consultant (IE not a temp staffer being called a consultant)

    --
    No sir I dont like it.
  9. Re:Some of this stuff really makes alot of sense by Effugas · · Score: 4, Insightful

    It is indeed a thought experiment -- but one that's led to some interesting stuff. Voice over DNS was actually a really surprising hack -- here you have a globally deployed caching system, sometimes several levels deep, that actually has the capacity to host the minimal bitrate for a minimally compressed voice link.

    There's millions of servers out there that we can interface with -- what's the impact of that? If nothing else, it's fun to be playing with something other than TCP headers :-)

    --Dan

    P.S. A broom can be used to sweep the floor -- or to knock something out of a tree, or to scare off a wild animal, or to burn for heat. There's something to be said for separating common uses from "inherent purposes". HTTP was certainly never designed to host as much dynamic content as it does now!

  10. Re:Win2k DNS by Anonymous Coward · · Score: 1, Insightful

    Yes, the ability to learn is important. But just as important is the ability to say "I don't know." If there are two candidates where I feel that either has the same learning capacity, but one is more honest about their skills, I'll pick the more honest one because I know where they stand. I have enough know-it-all-can-do-everything-bow-before-me types around me already who manage just to make more work for me later when they couldn't actually do what they said they could do. And firing people is at best unpleasant.

  11. OFFTOPIC? I WROTE THE SLIDES :-) by Effugas · · Score: 1, Insightful

    Wow.