nanog mailing list archives

Re: Exploit for DNS Cache Poisoning - RELEASED

From: Florian Weimer <fw () deneb enyo de>
Date: Sat, 26 Jul 2008 21:42:06 +0200

* Paul Vixie:

in <http://permalink.gmane.org/gmane.linux.redhat.fedora.general/306278>
we see this text:

      The DNS attacks are starting!!!

      Below is a snippet of a logwatch from last night.  Be sure all DNS
      servers are updated if at all possible.  The spooks are out in full
      on this security vulnerability in force.

      THIS IS YOUR LAST WARNING...!!!
      Patch or Upgrade NOW!

      ...

this ought to be an interesting weekend.


It's from a Georgia Tech address, so it's likely some sort of monitoring
effort by David Dagon.  I see it in my logs, too.

Current thread:

Re: Exploit for DNS Cache Poisoning - RELEASED, (continued)
- - - Re: Exploit for DNS Cache Poisoning - RELEASED Eric Brunner-Williams (Jul 24)
    - RE: Exploit for DNS Cache Poisoning - RELEASED Tomas L. Byrnes (Jul 24)
    - Re: Exploit for DNS Cache Poisoning - RELEASED David Conrad (Jul 24)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Valdis . Kletnieks (Jul 24)
    - Re: Exploit for DNS Cache Poisoning - RELEASED David Conrad (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Alexander Harrowell (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Paul Vixie (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Pete Carah (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Graeme Fowler (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Graeme Fowler (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Florian Weimer (Jul 26)
    - RE: Exploit for DNS Cache Poisoning - RELEASED Tomas L. Byrnes (Jul 25)
    - Re: Exploit for DNS Cache Poisoning - RELEASED Paul Vixie (Jul 24)
  - Re: Exploit for DNS Cache Poisoning - RELEASED Sean Donelan (Jul 24)