Linux Journal

Paranoid Penguin - DNS Cache Poisoning, Part II: DNSSEC Validation

Last month, I described, in detail, the problem of DNS cache poisoning and why it's fundamentally changed our understanding of DNS security. Whereas previously it seemed good enough to keep one's DNS ...
Linux Journal

DNSSEC Part II: the Implementation

This article is the second in a series on DNSSEC. In the first one, I gave a general overview of DNSSEC concepts to lay the foundation for this article, which discusses how to enable DNSSEC for a zone ...
Simon Fraser University

[linux-security] bind 9 vulnerable to DoS attacks

Topic ===== Version 9 of the bind name service daemon prior to version 9.2.1 contain a denial of service vulnerability. Problem Description ===== BIND (Berkeley Internet Name Domain) is an ...
CSOonline

DNSSEC explained: Why you might want to implement it on your domain

The Domain Name System Security Extensions (DNSSEC) is a set of specifications that extend the Domain Name System (DNS) protocol by adding cryptographic authentication for responses received from ...
Dark Reading

Microsoft, Late to the Game on Dangerous DNSSEC Zero-Day Flaw

Among the more dangerous of the flaws for which Microsoft released a patch this week on Patch Tuesday is a denial-of-service (DoS) vulnerability publicly disclosed back in February in the Domain Name ...