Network World
Saturday, September 6, 2008
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Cisco Subnet Blog

Cisco Subnet
NetworkWorld.com > Community > Cisco Subnet Blog

Navigation

Researcher demos at RSA how firewalls can be penetrated via DNS

Submitted by Cisconet on Mon, 04/07/2008 - 4:28pm

A security researcher Tuesday at the RSA Conference is going to demonstrate how routers from Linksys and other manufacturers can be abused by attackers to penetrate firewalls. According to a story by the IDG News Service, Dan Kaminsky has spent the past year studying how design flaws in the way that browsers work with the Internet's Domain Name System (DNS) can be manipulated in this way.

According to the story:

The technique, called a DNS rebinding attack, would work on virtually any device, including printers, that uses a default password and a Web-based administration interface, said Kaminsky, who is director of penetration testing with IOActive.

Although security researchers had known that this type of hack was theoretically possible, Kaminsky's demo will show that it can work in the real world, the story adds.

More from Cisco Subnet:

* Lost memo of missing Cisco sales trainee found in Galactica
Riverbed is just another has-been Cisco competitor
Don't split that OSPF area
Services, collaboration are key themes of this year’s Cisco Summit
* CCNP lab essentials
* Jeff Doyle: Understanding MPLS

Go to Cisco Subnet for more Cisco news, blogs, discussion forums, security alerts, book giveaways, and more.

- 20 useful sites for Cisco networking professionals
- This month's Cisco Subnet giveaways
- Network World's IT Buyer's Guide: Cisco products
- Subscribe to Network World's Cisco Alert, which includes a weekly digest of all Cisco Subnet items

Click to read the article this is in response to.

Permalink
Read more about:

Nothing New Under The Sun Here

Useful answer?
0
Submitted by MadNav on Tue, 04/08/2008 - 1:23pm.

Just goes to prove, you can't overemphasize the importance of underestimating the power that 'Default Settings' bring to your network environment, or rather to someone elses;) Be safe out there e-one and lock 'those' doors!!!

DNS Rebinding...

Useful answer?
0
Submitted by Anon on Thu, 04/10/2008 - 4:54am.

Not just theoretical! Get with the program people. DNS rebinding has been around, in one form or another, for about a decade.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

About the Cisco Subnet Blog

RSS feed Blog archive.

The Cisco Subnet blog is the official blog of the Network World Cisco Subnet community, managed by Editor Linda Leung. Cisco Subnet is the independent voice of Cisco customers and is your gateway to daily Cisco news, blogs, opinion, books, prize giveaways and more. Visit the Cisco Subnet home page daily and while you are there, subscribe to the Cisco Alert e-mail newsletter, which includes news and views generated by the Cisco Subnet community as well as Cisco-related stories on Network World and elsewhere on the Web.

LAN & WAN news

RSS feed (WAN community)

Advertisement: