nanog mailing list archives
Re: Dan Kaminsky
From: Curtis Maurand <cmaurand () xyonet com>
Date: Tue, 04 Aug 2009 13:32:42 -0400
andrew.wallace wrote:
He didn't find it. He only publicized it. the guy who wrote djbdns fount it years ago. Powerdns was patched for the flaw a year and a half before Kaminsky published his article.On Thu, Jul 30, 2009 at 11:48 PM, Dragos Ruiu<dr () kyx net> wrote:at the risk of adding to the metadiscussion. what does any of this have to do with nanog? (sorry I'm kinda irritable about character slander being spammed out unnecessarily to unrelated public lists lately ;-P )What does this have to do with Nanog, the guy found a critical security bug on DNS last year.
http://blog.netherlabs.nl/articles/2008/07/09/some-thoughts-on-the-recent-dns-vulnerability"However - the parties involved aren't to be lauded for their current fix. Far from it. It has been known since 1999 that all nameserver implementations were vulnerable for issues like the one we are facing now. In 1999, Dan J. Bernstein <http://cr.yp.to/djb.html> released his nameserver (djbdns <http://cr.yp.to/djbdns.html>), which already contained the countermeasures being rushed into service now. Let me repeat this. Wise people already saw this one coming 9 years ago, and had a fix in place."
--Curtis
Current thread:
- Re: Dan Kaminsky andrew.wallace (Aug 01)
- Re: Dan Kaminsky Cord MacLeod (Aug 01)
- Re: Dan Kaminsky Richard A Steenbergen (Aug 03)
- Re: Dan Kaminsky Cord MacLeod (Aug 03)
- Re: Dan Kaminsky andrew.wallace (Aug 03)
- Re: Dan Kaminsky Dragos Ruiu (Aug 04)
- Re: Dan Kaminsky Richard A Steenbergen (Aug 03)
- Re: Dan Kaminsky Cord MacLeod (Aug 01)
- Re: Dan Kaminsky Curtis Maurand (Aug 04)
- Re: Dan Kaminsky Valdis . Kletnieks (Aug 04)
- Re: Dan Kaminsky Mikael Abrahamsson (Aug 04)
- Re: Dan Kaminsky Kevin Oberman (Aug 04)
- Re: Dan Kaminsky Patrick W. Gilmore (Aug 04)
- Re: Dan Kaminsky Leo Bicknell (Aug 05)
- Re: Dan Kaminsky Florian Weimer (Aug 05)
- DNS alternatives (was Re: Dan Kaminsky) Roland Dobbins (Aug 05)
- Re: DNS alternatives (was Re: Dan Kaminsky) Mark Andrews (Aug 05)
- Re: DNS alternatives (was Re: Dan Kaminsky) Roland Dobbins (Aug 05)
- RE: DNS alternatives (was Re: Dan Kaminsky) Erik Soosalu (Aug 05)
- Re: Dan Kaminsky Valdis . Kletnieks (Aug 04)