[nsp-sec] Phishing
Chris Morrow
morrowc at ops-netman.net
Sat Apr 19 23:07:03 EDT 2008
On Sat, 19 Apr 2008, Rodney Joffe wrote:
> ----------- nsp-security Confidential --------
>
> I'm not sure if this belongs rather on -d... but in the interim, I
> think that most of you will want to look at this presentation that Dan
> Kaminsky presented a couple of hours ago. He has indicated that he
> intends to publish it far and wide. Not new (XSS scripting, but with a
> new twist based on the new ISP/DNS model of NXDOMAIN and wildcard
> redirection for advertising.
wait.. you mean fucking with basic internet plumbing has unintended
consequences?? really? Shocker.
>
> http://www.doxpara.com/DMK_Neut_toor.ppt
>
> I have his paper, but it does not appear to have been published yet.
> If it shows up publicly, I'll provide a link. It has an "interesting"
> tone - pure Kaminsky attitude.
There was a decent write-up on this actually on the web earlier today...
<http://feeds.feedburner.com/~r/wired27b/~3/273658786/isps-error-page.html>
-Chris
More information about the nsp-security
mailing list