Slashdot Mirror

← Back to Stories (view on slashdot.org)

DNS Flaw Hits More Than Just the Web

Posted by timothy on from the gee-dan-thanks-thanks-a-bunch dept.

gringer writes "Dan Kaminsky presented at the Black Hat conference in Las Vegas on Wednesday, and said that the DNS vulnerability he discovered is much more dangerous than most have appreciated. Besides hijacking web browsers, hackers might attack email services and spam filters, FTP, Rsync, BitTorrent, Telnet, SSH, as well as SSL services. Ultimately it's not a question of which systems can be attacked by exploiting the flaw, but rather which ones cannot. Then again, it could just be hype. For more information, see Kaminsky's power point presentation." Update: 08/07 19:48 GMT by T : There's also an animation of the progress of the patch.

23 of 215 comments (clear)

  1. wow by mevets · · Score: 5, Funny

    its almost like every service that uses hostnames might be affected.

    1. Re:wow by idobi · · Score: 4, Funny

      That's why I only navigate using IP addresses... damn kids with their domain names!

      Get off my lawn!

    2. Re:wow by rpmayhem · · Score: 2, Funny

      I'll get off your lawn when I'm done digging point-to-point fiber from my house to my favorite websites. Forget DNS, I'm building my own internet.

    3. Re:wow by Dirtside · · Score: 2, Funny

      Don't you mean, get off my 127.0.0.1?

      --
      "Destroy science and religion. Science would re-emerge exactly the same; but not religion." - Penn Jillette, paraphrased
  2. Black Hat Hacker and Power Point by tristian_was_here · · Score: 2, Funny

    A black hat hacker using power point??? Next they will be making viruses for specifically for Windows...

    Oh er? Never mind.

  3. Don't believe the hype! by 192939495969798999 · · Score: 2, Funny

    Bah, there's no way that this DNS vulnerability affects any of us here! We're all up to speed on patc
    +++
    NO CARRIER

    --
    stuff |
    1. Re:Don't believe the hype! by Stanistani · · Score: 2, Funny

      *makes note not to visit devinmoore.com, as they seem to have some infrastructure problems*

      --
      You can't talk about Wikipedia's flaws on Wikipedia
    2. Re:Don't believe the hype! by mrdoogee · · Score: 3, Funny

      Its a stupid joke, alright. A no carrier signal looks nothing like when you say candlejack. We all know th

    3. Re:Don't believe the hype! by Zancarius · · Score: 4, Funny

      Bah, there's no way that this DNS vulnerability affects any of us here! We're all up to speed on patc
      +++
      NO CARRIER

      That's so last century. Here, let me fix it for you:

      Bah, there's no way that this DNS vulnerability affects any of us here! We're all up to speed on patc
      [GOATSE]

      --
      He who has no .plan has small finger. ~ Confucius on UNIX
  4. To everyone on 216.34.181.45 by HungryHobo · · Score: 5, Funny

    And they called me a fool when I refused to learn website names WHO'S LAUGHING NOW!!

    1. Re:To everyone on 216.34.181.45 by Anonymous Coward · · Score: 3, Funny

      WHOIS*

    2. Re:To everyone on 216.34.181.45 by grnbrg · · Score: 4, Funny

            Domain Name: LAUGHINGNOW.COM
            Registrar: GODADDY.COM, INC.
            Whois Server: whois.godaddy.com
            Referral URL: http://registrar.godaddy.com/
            Name Server: NS1.ACTIVEAUDIENCE.COM
            Name Server: NS2.ACTIVEAUDIENCE.COM
            Status: clientDeleteProhibited
            Status: clientRenewProhibited
            Status: clientTransferProhibited
            Status: clientUpdateProhibited
            Updated Date: 06-aug-2008
            Creation Date: 11-mar-2005
            Expiration Date: 11-mar-2009

  5. Re:SSH and SSL protected by Anonymous Coward · · Score: 0, Funny

    SSL will raise a certificate error unless they have some way of getting a fake cert.

    Or if they've managed to re-route the Certificate Authority. But that would require some kind of hack against the Domain Name Serv-oh... never mind.

  6. Re:Litmus testing by DrEldarion · · Score: 5, Funny

    Wait, we need to know tech to be here? I thought we just had to be libertarian and anti-copyright.

  7. Surprised? by LaminatorX · · Score: 5, Funny

    This is why I've maintained a comprehensive /etc/hosts file since 1996. Every now and then it gets to be a bit large, so I periodically print it out and cache it to a shelf full of 3-ring binders.

  8. Gopher by dj245 · · Score: 5, Funny

    The three of us who still use Gopher are scared to death!

    --
    Even those who arrange and design shrubberies are under considerable economic stress at this period in history.
  9. Re:Litmus testing by Anonymous Coward · · Score: 5, Funny

    I doubt that the union of "people who think the web is the Internet" and "people who discover Slashdot and stick around" is more than a handful.

    Actually, I imagine the union would be enormous. Perhaps you meant the intersection?

  10. Re:Litmus testing by Just+Some+Guy · · Score: 5, Funny

    Nah. Those are just the requirements for upmodding. You can still hang around otherwise, but we might not talk to you.

    --
    Dewey, what part of this looks like authorities should be involved?
  11. Power Point Presentation? by jc42 · · Score: 4, Funny

    WTF? What geek or nerd would even read a PPP, much less trust anything in it?

    And is it even possible to transfer actual information via Power Point? I've heard rumors that it can be done, but I don't think I've ever seen anyone actually do it.

    --
    Those who do study history are doomed to stand helplessly by while everyone else repeats it.
    1. Re:Power Point Presentation? by corbettw · · Score: 3, Funny

      And is it even possible to transfer actual information via Power Point? I've heard rumors that it can be done, but I don't think I've ever seen anyone actually do it.

      I saw a great Power Point presentation on that subject once, it was very convincing.

      --
      God invented whiskey so the Irish would not rule the world.
  12. To: UID 1314109 Re: CID 24512103 by Speare · · Score: 4, Funny

    To: UID 1314109
    Re: CID 24512103

    I, UID 84249, am laughing now.

    --
    [ .sig file not found ]
  13. Re:Litmus testing by Plutonite · · Score: 4, Funny

    Check the stories for horrifying editing mistakes.. if you don't find any by the end of the day, I guess we'll have to notify Taco about being owned.

  14. Re:Litmus testing by myowntrueself · · Score: 2, Funny

    Rubber-soled platform soles and tinfoil bodysuits?

    So those 1970's scifi series (such as Blakes' 7 and UFO) were actually prophetic!

    --
    In the free world the media isn't government run; the government is media run.