[nsp-sec] DNS vulnerability CVE-2008-1447/VU#800113
Dave Mitchell
davem at yahoo-inc.com
Wed Jul 9 02:50:18 EDT 2008
We had the fun joy of upgrading hundreds of our NS's to Bind 9.5.x. DNS is fun.
CPE box upgrades (or lack thereof) will definitely be the interesting part of this.
-d
On Tue, Jul 08, 2008 at 07:45:06PM -0700, Barry Raveendran Greene wrote:
> ----------- nsp-security Confidential --------
>
>
>
>
> > Thanks. It just feels like the "coordinated vendor
> > announcements" for the SNMP ASN.1 problems, the BGP
> > reset-injection problems, etc. Those got lots of attention,
> > and lots of people running around, but the bad guys pretty
> > much ignored them.
>
> People hate my analogy, but that is the goal - activate the "cockroach
> effect." If you shine a light on the floor of a room full of cockroaches,
> they all tend to run away. The dumb ones don't and get stepped on.
>
> Same goal here - shine the light on the problem. Everyone is watching. All
> monitors are looked at. As soon as we get a dumb "cockroach" who scurries
> out, we step on him/her.
>
> The problem is, over time, when the light shines elsewhere. :-0
>
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20080708/80f5a431/attachment-0001.sig>
More information about the nsp-security
mailing list