Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


Re: Warning of major NHS IT overspend
.

  • To: [EMAIL PROTECTED]
  • Subject: Re: Warning of major NHS IT overspend
  • From: Ian G Batten <[EMAIL PROTECTED]>
  • Date: Thu, 4 Nov 2004 10:09:47 +0000
  • In-reply-to: <[EMAIL PROTECTED]>
  • Organization: Fujitsu Telecommunications Europe Limited
  • References: <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
  • Reply-to: [EMAIL PROTECTED]
  • Sender: [EMAIL PROTECTED]
.
 
On Thu, 04 Nov 2004, Peter Tomlinson wrote:

> DNS is a disciplined (OK, self-disciplined) method where data is used 
> all the time by messages coming from all over the world. Errors and 
> service outages are quickly obvious and we all as users expect them to 
> happen from time to time and be quickly fixed by the professionals who 
> operate the nodes in the internet.

Huh?  DNS servers are operated by random punters, and until quite
recently it was trivially easy (by virtue of the undisciplined way in
which DNS daemons blithely accepted additional information records) to
subvert things.  Failures of DNS servers (in the sense that NS records
point to things that aren't actually serving that zone) are absolutely
routine: taking the logs since midnight (it's now 1000ish) I see 246
_unique_ lame servers:

carme:/misc/newlogs/current 10:07:11 (569)
$ sed -n "/lame server/s/.*resolving '\([^']*\)' .*/\1/p" ext-proxy-*.ftel.co.uk/named/INFO  | sort -u | wc -l
     246

ian
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.