A bit more than a month ago a DNS attack was reported by Dan Kaminsky that stated there was a fundamental problem with the DNS protocol that could result in web site requests being sent to the wrong location. This is a great opportunity for phishing and other evil doer's to grab personal information without our knowledge.
I decided to use the tool on his web site to test if my ISP (Northwestel) had patched their DNS servers to better protect against this particular attack. I clicked on the button that says "Check My DNS" and was presented with a potential failure notice as follows:
Your name server, at 216.108.8.8, appears vulnerable to DNS Cache Poisoning.
All requests came from the following source port: 50341
...
I wonder when Northwestel will update their DNS servers to protect against this issue?
Check your own ISP at the above link and see if they are doing any better. Leave comments to the failure/success of the test!
Comments
Of course, that's now administered by NorthwesTel as well:
"Your name server, at 199.247.235.6, appears vulnerable to DNS Cache Poisoning."