Forgot your password?
typodupeerror
Security

+ - 5 years after major DNS flaw found, few US companies have deployed long-term fix->

Submitted by alphadogg
alphadogg (971356) writes "Five years after the disclosure of a serious vulnerability in the Domain Name System dubbed the Kaminsky bug, only a handful of U.S. ISPs, financial institutions or e-commerce companies have deployed DNS Security Extensions (DNSSEC ) to alleviate this threat. In 2008, security researcher Dan Kaminsky described a major DNS flaw that made it possible for hackers to launch cache poisoning attacks, where traffic is redirected from a legitimate website to a fake one without the website operator or end user knowing. While DNS software patches are available to help plug the Kaminsky hole, experts agree that the best long-term fix is DNSSEC, which uses digital signatures and public-key encryption to allow websites to verify their domain names and corresponding IP addresses and prevent man-in-the-middle attacks."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

5 years after major DNS flaw found, few US companies have deployed long-term fix

Comments Filter:

What this country needs is a good five dollar plasma weapon.

Working...