Jul 08 2008

Network Security Podcast, Episode 111: Massive DNS multivendor patch

Published by at 10:39 am under Podcast,Security Advisories

If you’re using DNS, and we all are, prepare to patch every system you have. Not just your name servers, but any and all systems using DNS, which means virtually everything! This is a flaw discovered by Dan Kaminsky that affects the basic technology underlying DNS and effects all vendors. Dan took the road of responsible disclosure and worked with a large group of vendors to coordinate this patch. This may be one of the first successful examples of a large multivendor patch, and if ever there was a need for it, this is it.

Rich was able to get an interview in anticipation of today’s announcement and you can hear about it straight from Dan himself. There are not a lot of technical details concerning the vulnerability in the interview and every effort is being made to give us as much time to patch before reverse engineering gives the bad guys the secret sauce to make this a weaponized vulnerability.

Check the show notes for the CERT advisory and additional information.

Network Security Podcasdt, Episode 111, July 8, 2008


[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

2 responses so far

2 Responses to “Network Security Podcast, Episode 111: Massive DNS multivendor patch”

  1. “This is…912″ « Tripwiseon 08 Jul 2008 at 6:43 pm

    […] you’ve read about the big bad bug in DNS.  You’ve seen the vendors assault you with patches for it.  You’ve seen people […]

  2. Research Blog - Research - SecureWorkson 10 Jul 2008 at 8:22 am

    […] diverse group managed to effectively keep a lid on their efforts until Tuesday. As Dan said in a podcast interview, they “were very […]

%d bloggers like this: