Holey DNS!

Been awhile since I posted, but that doesn’t mean I’ve not been busy. Trends have been all over the map lately. It would take me weeks to catch the site up with what all has been going on since my last post, so I’ll try to fill in pieces as I can going forward.

That said, for now:

PATCH DNS NOW! There’s rumblings of a potentially disastrous DNS cache poisoning vulnerability. We won’t know just how bad this is until Dan Kaminsky gives his presentation Aug. 7th. If it’s a nasty one but the impact is negligible, then credit Kaminsky, CERT, Microsoft and the other vendors involved for the way the disclosure has been handled and coordinating the patch release. Time will tell…