RE: RE: DNS cache poisoning and pharming

["Sadler, Connie" <Connie_Sadler () brown edu>]

Does anyone know of a good set of instructions for people who need to
know more about what to look for when prompted to verify a cert?

Connie


-----Original Message-----
From: Joe George [mailto:j.george () conservation org] 
Sent: Thursday, June 09, 2005 10:44 AM
To: daswani () learnsecurity com; security-basics () securityfocus com
Subject: RE: RE: DNS cache poisoning and pharming

There are several sites (including some legitimate WI-FI networks) which
may prompt the security dialogue box that was used in the example on the
referred link.  It's always good to view the certificate and always look
for anomalies on a site (such as odd fonts, strange IP address,
redirections, and so forth).  

I received an email from Citibank once , and even though I do not have
an account with them, I decided to take a look at the site for the fun
of it.  The dead and broken links throughout the site suggested to me
that it was indeed a hoax.  


Vigilance is key!


-----Original Message-----
From: daswani () learnsecurity com [mailto:daswani () learnsecurity com] 
Sent: Thursday, June 09, 2005 3:25 AM
To: security-basics () securityfocus com
Subject: Re: RE: DNS cache poisoning and pharming


There are precautions that users can take to avoid becoming a victim to
a pharming attack.

See https://www.pharming.org/