- Tuesday, 10 November 2009
- INQ Mobile
- RSS
It was only a matter of time before the INQUIRER found out - Top Intel spinner
DNS hole patched - for now
THE COMPUTER INDUSTRY has pulled together in a mad race to save the interwibble from falling into the evil clutches of hackers, which could have been caused by a recently discovered Domain Name System (DNS) flaw.
The vulnerability discovered in the DNS could have led to a serious phishing problem in which people were led to which fake websites and tricked into divulging sensitive information apparently.
The flaw was such that no matter which address users typed in to their browsers, it would still mean they could be hijacked and routed to a malicious site instead.
A security boffin for IOActive, by the name of Dan Kaminsky, was the first to stumble across the weakness six months ago “completely by accident”. Kaminski noted, "I was looking at something that had nothing to do with security".
He immediately contacted industry Bigshots like the Vole, Cisco and Sun in order to get some help in fixing the problem.
"A lot of people really stepped up and showed how collaboration can protect customers" said Kaminsky who worked with 16 other boffins at Mighty-Soft’s Redmond campus to come up with a fix. He also set up a web site where people can check to see if their computers are susceptible to the flaw.
The Vole released a patch in a software update package yesterday, and it’s believed that automatic updating should be able to ward off the threat for the time being.
"People should be concerned but they should not be panicking," noted Kaminsky, who added, "we have bought you as much time as possible to test and apply the patch."
The technical details of the DNS problem are currently being kept pretty hush hush, in order to prevent, as far as possible, naughty hackers figuring out how to use it. But let’s face it, with a challenge like that being thrown down, it might just be a matter of time. µ
L’Inq
AFP
Share this:
ShareBusiness Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
The patch KB951748 affects ZoneAlarm products on XP & Vista - you cannot connect to the internet. 

Solution is to lower to medium setting or manually configure ports in Custom/Expert...bit of a headache

MS and ZoneLabs are working on a fix
So it is a windows-only problem then?
with the windows DNS client?
That title looks scary, I have to say.
I thought dns servers and software that run tlds where affected ...
No the problem was multi OS wide...ANYTHING browsing on the interscribble was vulnerable.
The hacks here are just trying to make it sound as if it was a MS problem, because they are Jobs' bitches.
not just windows...

"1) It’s a bug in many platforms

2) It’s the exact same bug in many platforms (design bugs, they are a pain)

3) After an enormous and secret effort, we’ve got fixes for all major platforms, all out on the same day.

4) This has not happened before. Everything is genuinely under control."
It's interesting that the issue is the same at the one underlying the SSL vulnerability they fixed, so if there's any other part of the OS's that use entropy/randomness for security we can expect that too to be on the list of needing attention, I wonder if they are working on more fixes for more parts of the world's IT security.
And if I can figure this out I'm guessing russian internet bandits can too.