Dan Kaminsky, director of penetration testing at IOActive, discovered a fundamental flaw in the Domain Name System (DNS) protocol that would allow an attacker to massively disrupt the Internet. His finding prompted some 16 vendors to deliver patches that could protect ISPs and enterprise companies from falling prey to would-be attackers. Kaminsky joined me on a podcast interview to shed more light on his findings and what enterprise network managers need to do now.
Kaminsky has been working for some time now to ensure major vendors simultaneously release patches to help network managers secure and protect enterprise and ISP networks. But this week encountered some skepticism about his reported discovery from the hacker community that couldn't be sure his finding was news.
Kaminsky, while admitting he deserves the backlash he is getting for not revealing specific technical details around the flaw, said he'd rather have his reputation take the hit now than countless companies become vulnerable because of this flaw in DNS.
Listen to the podcast interview here to learn more, and stay tuned for more details to be released regarding the DNS flaw and the fix at Black Hat in August.
Dubie is a senior editor at Network World.
The opinions expressed in this Weblog are those of the writer and may not represent the opinions of Network World.
|
|
Post new comment