| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 22 Jul 2008 10:24:32 -0400 From: Ureleet <ureleet@...il.com> To: natron@...isibledenizen.org Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Kaminsky's DNS Issue Leaked? oh noez, run for the hills, oh wait. turn off recursive dns where u dont need it. On Mon, Jul 21, 2008 at 6:56 PM, natron <shiftnato@...il.com> wrote: > It appears matasano posted an explanation of Dan Kaminsky's DNS issue > to their blog today, but looks like it may have been yanked back down. > My google reader account nabbed it via the RSS feed while it was up. > > It looks like maybe they had this typed up, ready to hit "post" as > soon as someone else figured it out? They had advance knowledge of > the issue via conference calls with Kaminsky. Halvar Flake posted > some speculation on what the issue was, but his speculation was not > the full issue; only a re-hash of previously known issues. In any > event, Halvar's ideas were close, but incomplete. Matasano filled in > the missing details, possibly by accident. :) > > Details: http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html > > -N > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists