Another DNS Flaw Found, Patched

Posted by Soulskill on Friday January 9, 2009 @12:11PM from the come-and-gone dept.

darthcamaro writes "Remember the big DNS flaw that Dan Kaminsky 'discovered' last year? Well, it looks like another flaw in DNS has just been patched. This time it's an item that affects DNSSEC, which was supposed to be the savior for the Kaminsky flaw. The good news, though, is that this time, the issue is relatively minor and DNS has already been patched. 'The flaw is specific to certain usages of DNSSEC,' Joao Damas, senior programming manager of the ISC told InternetNews. 'It is strongly advised that all BIND DNSSEC deployments update in case they are using the particular pattern affected (DSA keys in some cases) and to prevent coming across the problem in the future unexpectedly.'"

3 of 66 comments (clear)

Min score:

Reason:

Sort:

subject by cstdenis · 2009-01-09 12:47 · Score: 4, Funny

This is bad for all those who use DNSSEC. Both of them must be annoyed at the need to their software.

--
1984 was not supposed to be an instruction manual.
1. Re:subject by Anonymous Coward · 2009-01-09 13:22 · Score: 1, Funny
  
  I think he just accidentally the whole DNSSEC.
Re:Yeah, um... by Anonymous Coward · 2009-01-09 14:35 · Score: 2, Funny

Since the Windows resolver can connect to BIND, and Microsoft didn't release a patch, a well-written Slashdot summary should have read

Microsoft refuses to fix critical Windows 7 security vulnerability.