Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
What's the story with these ads on Slashdot? Check out our new blog post to find out. ×
Security

Submission + - 5 years after major DNS flaw found, few US companies have deployed long-term fix->

alphadogg writes: Five years after the disclosure of a serious vulnerability in the Domain Name System dubbed the Kaminsky bug, only a handful of U.S. ISPs, financial institutions or e-commerce companies have deployed DNS Security Extensions (DNSSEC ) to alleviate this threat. In 2008, security researcher Dan Kaminsky described a major DNS flaw that made it possible for hackers to launch cache poisoning attacks, where traffic is redirected from a legitimate website to a fake one without the website operator or end user knowing. While DNS software patches are available to help plug the Kaminsky hole, experts agree that the best long-term fix is DNSSEC, which uses digital signatures and public-key encryption to allow websites to verify their domain names and corresponding IP addresses and prevent man-in-the-middle attacks.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

5 years after major DNS flaw found, few US companies have deployed long-term fix

Comments Filter:

As long as we're going to reinvent the wheel again, we might as well try making it round this time. - Mike Dennison

Working...