DNS Security: Old Vulnerabilities, New Exploits with Cricket Liu

[crayoxide]

http://www.snpnet.com/customer_pub/I...008/index.html

Quote:

Originally Posted by infoblox.com

In this webinar, DNS expert Cricket Liu and security researcher Dan Kaminsky discuss the latest CERT-published DNS security advisory (VU800113) that exposes most name servers, including BIND and Microsoft, to chace poisoning . Learn about the exposure and how to implement a robust DNS infrastructure that mitigates against this and other types of vulneabilities including distributed denial of service, malicious open recursive name servers, and unrestricted zone transfers.

This means there is AUDIO and it is presented in a flash base environment.

[Carpetsmoker]

Ugh, flash page ... And not even a notice if you don't have flash (Just an empty page) ...

[crayoxide]

Quote:

Originally Posted by Carpetsmoker

Ugh, flash page ... And not even a notice if you don't have flash (Just an empty page) ...

It is still a good listen.

[BSDfan666]

Quote:

Originally Posted by crayoxide

It is still a good listen.

No, it's still an empty page, no content.. no listen.

[scottro]

Crayoxide--WHENEVER you post a page with audio content, you should definitely mention it.

You--or one of the moderators--should go back to your post and put in UPPER CASE that there is audio content.

Someone might be at work, and have it cause issues, there could be a sleeping baby in the room, etc.

[crayoxide]

Quote:

Originally Posted by BSDfan666

No, it's still an empty page, no content.. no listen.

Anything presented by Cricket Liu on DNS is worthy of listening to in whatever format it comes in.



I suppose you can take your "its-in-flash" whining to him ...

[crayoxide]

Quote:

Originally Posted by scottro

Someone might be at work, and have it cause issues, there could be a sleeping baby in the room, etc.

I am anti-audio and I set the mute option on all my workstations unless there is a need for it, so this is a non-issue for me. IMO, audio is for users, which is why this seems like a very quaint request to me, but I can see your point too.

One of *the* top things I love about our fleet of D630's is that a mute button is right next to the power button!!! Very handy.

[scottro]

Well then, it was nice of you to edit your first post. Sometimes, if something is a non-issue for a person, they don't realize how it could be an issue for someone else.

Therefore, I thank you.

(Hrrm, rereading this, I think it came out as a snide thanks--it's not meant to be.
I'm serious--it's harder for us to understand something that doesn't affect us, so it does take a bit more niceness to go to extra trouble for others. My thanks is quite sincere.)

[schrodinger]

Is this all about Dan Kaminsky's latetst vulnerability regarding BIND?

If it is then this is a good read, w3m -dump

http://beezari.livejournal.com/141796.html