December 7th, 2008, 04:42 PM
Mass DNS Hijacks
Article is here:
Researchers have identified a new trojan that can tamper with a wide array of devices on a local network, an exploit that sends them to impostor websites even if they are hardened machines that are fully patched or run non-Windows operating systems.
And a jolly good time was had by all
According to researchers with anti-virus provider McAfee's Avert Labs, the update allows a single infected machine to pollute the DNS settings of potentially hundreds of other devices running on the same local area network by undermining its dynamic host configuration protocol, or DHCP, which dynamically allocates IP addresses.
If you cannot do someone any good: don't do them any harm....
As long as you did this to one of these, the least of my little ones............you did it unto Me.
What profiteth a man if he gains the entire World at the expense of his immortal soul?
December 8th, 2008, 10:15 AM
While the article states that this virus is not widely circulated, it wreaked havoc at one of my clients. We didnt even know they had a problem until a credit card was stolen.
Since it's a relatively small LAN, we decided to use static IP and DNS settings. This wont work for larger clients.
The article mentions their preference for OpenDNS. I would be curious if any AO members have any experience with this.
In God We Trust....Everything else we backup.
December 8th, 2008, 10:26 AM
I have setup openDNS at a client of mine. Seeing it was a free service and offered some nice extra features at no cost (such as filtering) we set up a public web cafe network to use openDNS as their ONLY dns server.
Originally Posted by Cheap Scotch Ron
In our case it was mainly for the blacklists of sites. We filtered out known porn and phishing sites aswell as some other disturbing categories. I have to say.. that so far openDNS did their job pretty good.
Ubuntu-: Means in African : "Im too dumb to use Slackware"
By Negative in forum General Computer Discussions
Last Post: October 19th, 2008, 04:20 PM
By mathgirl32 in forum Cosmos
Last Post: May 17th, 2005, 12:20 AM
By OverdueSpy in forum Cosmos
Last Post: September 21st, 2004, 04:30 AM
By clintonsucks in forum Cosmos
Last Post: October 21st, 2003, 10:24 PM
By KOBBRAS in forum Miscellaneous Security Discussions
Last Post: February 23rd, 2002, 09:16 PM
Tags for this Thread