Blog of Random Thoughts and Pictures

DNS unstuck

July 14th, 2008

There has been a serious flaw identified in DNS recently, which may allow an attacker to target an ISP, replacing the entire web with their own content, not good!
DNS, taken by kalleboo at Flickr
More can be seen from Dan Kaminsky Discovers Fundamental Issue In DNS: Massive Multivendor Patch Released .
To save the day we also have the newly created Industry Consortium for the Advancement of Security on the Internet (ICASI), which offer advisories and support.
All of which still has me very worried given that on Wednesday, 3rd December 2008 the .tel TLD will offer a service that allows individuals and businesses to store and manage all their contact information and keywords directly within the Domain Name System (DNS) without the need to build, host or manage a website.
And what about SocialDNS, personal details already retrieved via DNS. go://miguelpdl [Just a Firefox plugin required].