nanog mailing list archives
Cache Poisoning Detection via ONZRA's CacheAudit
From: Jose Avila <jose () onzra com>
Date: Fri, 1 Aug 2008 13:20:45 -0700
In light of new attack vectors DNS Cache Poisoning discovered by Dan Kaminsky, ONZRA has developed a free Open Source (BSD License) tool called CacheAudit. This tool allows recursive providers to detect cache poisoning events using cache dumps from their DNS servers. Along with releasing this tool, ONZRA has also released a white paper describing the validation process.
Main Tool Page: http://www.onzra.com/cacheaudit.html White Paper: http://www.onzra.com/RecursiveDNSCacheAuditingWhitepaper.pdf Jose -- Jose Avila III ONZRA www.onzra.com
Current thread:
- Cache Poisoning Detection via ONZRA's CacheAudit Jose Avila (Aug 01)
- Re: Cache Poisoning Detection via ONZRA's CacheAudit Matthew Black (Aug 01)
- Re: Cache Poisoning Detection via ONZRA's CacheAudit Jose Avila (Aug 01)
- Re: Cache Poisoning Detection via ONZRA's CacheAudit Matthew Black (Aug 01)