Kaminsky's DNS Attack Disclosed, Then Pulled

← Back to Stories (view on slashdot.org)

Kaminsky's DNS Attack Disclosed, Then Pulled

Posted by Soulskill on Monday July 21, 2008 @11:00AM from the can-of-worms dept.

An anonymous reader writes "Reverse engineering expert Halver Flake has recently mused on Dan Kaminsky's DNS vulnerability. Apparently his musings were close enough to the mark to cause one of the Matasano team, who apparently already knew of the attack, to publish the details on the Matasano blog in a post entitled 'Reliable DNS Forgery in 2008.' The blog post has since been pulled, but evidence of it exists on Google and elsewhere. It appears only a matter of time now before the full details leak." Reader Time out contributes a link to coverage on ZDNet as well.

12 of 281 comments (clear)

Min score:

Reason:

Sort:

Re:The push for DNSSec by dintech · 2008-07-21 11:07 · Score: 4, Funny

Fame? Notorioty? Unstoppable attractiveness to women?
A: Because it breaks the flow of a message by DNS-and-BIND · 2008-07-21 11:19 · Score: 5, Funny

Q: Why is starting a post in the Subject: line annoying?

--
Shutting down free speech with violence isn't fighting fascism. It IS fascism!
Re:The push for DNSSec by snowgirl · 2008-07-21 11:37 · Score: 5, Funny

Fame? Notorioty? Unstoppable attractiveness to women?
Hey, you all are laughing now, but I tell you, there's a whole throng of us women just waiting for the right guy to secure our DNS!

--
WARNING! This girl exceeds the MAXIMUM SAFE standards established by the FDA for BRATTINESS
That's it by krkhan · 2008-07-21 11:41 · Score: 4, Funny

I've had enough. From now on, /. isn't /. for me. It's 216.34.181.45. I'm updating all my bookmarks. Wait, why is it redirecting? I have a bad feeling about this. Itsatrick.
Re:The push for DNSSec by geekgirlandrea · 2008-07-21 12:00 · Score: 5, Funny

Whereas us lesbians can secure our own DNS just fine, but would still prefer to have some nice girl do it for us. :)
Re:The push for DNSSec by Yeff · 2008-07-21 12:07 · Score: 5, Funny

Hottest. Slashdot Thread. Ever!

--
"Freedom Through Vigilance"
Hottest? by Rudd-O · 2008-07-21 12:08 · Score: 5, Funny

This is sad.

--
Rudd-O - http://rudd-o.com/
1. Re:Hottest? by Antique+Geekmeister · 2008-07-21 19:18 · Score: 4, Funny
  
  What's wrong? Doesn't your NNTP server carry alt.sex.bindage anymore?
2. Re:Hottest? by kpainter · 2008-07-22 03:45 · Score: 4, Funny
  
  I suspect a lot of Slashdotters have their sexual *ahem* attentions redirected to 127.0.0.1
Re:The push for DNSSec by Element119 · 2008-07-21 12:13 · Score: 4, Funny

if only i were a female, i'd be a lesbian for sure.
Re:No details? by NickFitz · 2008-07-21 13:31 · Score: 4, Funny

... it ended up with a 404 page. I thought it was a blip on their server, but now I see they retracted the post.
They fail. If they've removed it with no intention of making it available again it should be 410 Gone, not 404 Not Found. Am I the only person who reads the HTTP spec? It's not exactly hard to understand...

--
Using HTML in email is like putting sound effects on your phone calls. Just say <strong>no</strong>.
Re:The push for DNSSec by Anonymous Coward · 2008-07-21 15:47 · Score: 4, Funny

hope I didn't kill anyones chubber
On the contrary...