DNS Security

By Roger on October 13, 2007 10:07 PM | | Comments (0) | TrackBacks (0)

The Symantec Security Response weblog has a good entry today on DNS security. Its worth reading. The problem I see is that its short on solutions. Sure its a nice observation that SSL will warn you, but what else can you do?

I appreciate that they didn't go with the "use OpenDNS" kneejerk response that I see a lot. Depending on your ISP, the OpenDNS servers may be more secure. But if you're a large company, you want your ISP to be certified and accredited. That may be easier to force your ISP to obtain (you're paying them a lot of money after all). As the article states, the DNS response is still vulnerable to spoofing

There were a couple of points not covered by the article.
1. What if you get infected and the infection changes your DNS server settings. Will you catch that?
2. DNSSEC if it were ever implemented would provide some protection. I would have been interested in the author's take on that.

Categories

General

Tags

0 TrackBacks

Listed below are links to blogs that reference this entry: DNS Security.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/606

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on October 13, 2007 10:07 PM.

McAfee buys Safeboot was the previous entry in this blog.

Article: Infosec on the Cheap is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search