Microsoft DNS Exploits

SANS is reporting that successfull attacks were seen on April 4th against Windows DNS servers at two U.S. Universities.
We’ve disabled remote management of DNS. It would be a bad thing™ if our domain controllers were compromised. Don’t forget to check for other places you might use Microsoft DNS. Some systems up on our DMZ are running Microsoft DNS. Fortunately those are all firewalled correctly.