nanog mailing list archives
Re: Dan Kaminsky
From: Valdis.Kletnieks () vt edu
Date: Tue, 04 Aug 2009 14:19:08 -0400
On Tue, 04 Aug 2009 13:32:42 EDT, Curtis Maurand said:
What does this have to do with Nanog, the guy found a critical security bug on DNS last year.He didn't find it. He only publicized it. the guy who wrote djbdns fount it years ago. Powerdns was patched for the flaw a year and a half before Kaminsky published his article.
Yeah, and Robert Morris Sr wrote about a mostly-theoretical issue with TCP sequence numbers back in 1985. Then a decade later, some dude named Mitnick whacked the workstation of this whitehat Shimomura, and the industry collectively went "Oh ****, it isn't just theoretical" and Steve Bellovin got to write RFC1948. (Mitnick was the first *well known* attack using it that I know of - anybody got a citation for an earlier usage, either well-known or 0-day?)
"Wise people already saw this one coming 9 years ago, and had a fix in place."
Yes, but a wise man without a PR agent doesn't do the *rest* of the community much good. A Morris or Bernstein may *see* the problem a decade before, but it may take a Mitnick or Kaminsky to make the *rest* of us able to see it...
Attachment:
_bin
Description:
Current thread:
- Re: Dan Kaminsky andrew.wallace (Aug 01)
- Re: Dan Kaminsky Cord MacLeod (Aug 01)
- Re: Dan Kaminsky Richard A Steenbergen (Aug 03)
- Re: Dan Kaminsky Cord MacLeod (Aug 03)
- Re: Dan Kaminsky andrew.wallace (Aug 03)
- Re: Dan Kaminsky Dragos Ruiu (Aug 04)
- Re: Dan Kaminsky Richard A Steenbergen (Aug 03)
- Re: Dan Kaminsky Cord MacLeod (Aug 01)
- Re: Dan Kaminsky Curtis Maurand (Aug 04)
- Re: Dan Kaminsky Valdis . Kletnieks (Aug 04)
- Re: Dan Kaminsky Mikael Abrahamsson (Aug 04)
- Re: Dan Kaminsky Kevin Oberman (Aug 04)
- Re: Dan Kaminsky Patrick W. Gilmore (Aug 04)
- Re: Dan Kaminsky Leo Bicknell (Aug 05)
- Re: Dan Kaminsky Florian Weimer (Aug 05)
- DNS alternatives (was Re: Dan Kaminsky) Roland Dobbins (Aug 05)
- Re: DNS alternatives (was Re: Dan Kaminsky) Mark Andrews (Aug 05)
- Re: DNS alternatives (was Re: Dan Kaminsky) Roland Dobbins (Aug 05)
- RE: DNS alternatives (was Re: Dan Kaminsky) Erik Soosalu (Aug 05)
- Re: DNS alternatives (was Re: Dan Kaminsky) Roland Dobbins (Aug 05)
- Re: Dan Kaminsky Valdis . Kletnieks (Aug 04)