Exploit for DNS Cache Poisoning - RELEASED

Pete Carah pete at altadena.net
Fri Jul 25 22:14:06 UTC 2008

Paul Vixie wrote:
> in <http://permalink.gmane.org/gmane.linux.redhat.fedora.general/306278>
> we see this text:
> 	The DNS attacks are starting!!!
> 	Below is a snippet of a logwatch from last night.  Be sure all DNS
> 	servers are updated if at all possible.  The spooks are out in full
> 	on this security vulnerability in force.
> 	Patch or Upgrade NOW!
> 	...
> this ought to be an interesting weekend.

I saw much more than this *from the same address* starting two days ago, 
and from several other blocks belonging to the same university starting 
last week, to my home router and another server.  So far my better 
connected servers haven't been hit hard. (and no non-auto answer from 
"security" at that university...)

-- Pete

More information about the NANOG mailing list