Barney's Blog

Blog archive

DNS Disaster

The Domain Name System (DNS) lies at the core of the Internet and our own corporate networks, but most admins and network pros barely give it a second thought. An exploit discovered last summer that's now starting to spread should make us all take DNS seriously.

The problem comes with the scary name cache-poisoning vulnerability. "The vulnerability involves a weakness in the transaction ID used in DNS queries. Currently, replies to a DNS query have to contain the proper transaction ID, which is chosen randomly from 65,000 values," our report explains. Fortunately, there's a patch -- and has been for about half-a-year.

Posted by Doug Barney on February 23, 2009 at 11:53 AM


Featured

  • End of Microsoft's Open License Program Leaves Door Open for CSPs

    Microsoft's 20-year-old Open License program for SMBs will be phased out in 2022, leaving a crucial role open for Cloud Solution Providers to fill.

  • The 2020 Microsoft Product Roadmap

    From the next major update to Windows 10 to the next generations of .NET and PowerShell, here's what's on tap from Microsoft this year.

  • Microsoft To Switch to Subscription Model for Some Server Products

    New application server products coming from Microsoft in the second half of 2021 will be offered only on a subscription basis.

  • Party Lights Graphic

    Microsoft Positions Itself as the Platform of Choice for 5G

    As telecom companies begin rolling out 5G services, Microsoft is touting its 5G bona fides, namely Azure support for SDN.