Cache Poisoning Detection via ONZRA's CacheAudit
Jose Avila
jose at onzra.com
Fri Aug 1 20:20:45 UTC 2008
In light of new attack vectors DNS Cache Poisoning discovered by Dan
Kaminsky, ONZRA has developed a free Open Source (BSD License) tool
called CacheAudit. This tool allows recursive providers to detect
cache poisoning events using cache dumps from their DNS servers. Along
with releasing this tool, ONZRA has also released a white paper
describing the validation process.
Main Tool Page: http://www.onzra.com/cacheaudit.html
White Paper: http://www.onzra.com/RecursiveDNSCacheAuditingWhitepaper.pdf
Jose
--
Jose Avila III
ONZRA
www.onzra.com
More information about the NANOG
mailing list