dnssec

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

US proposes DNS fix: digital signatures

US proposes DNS fix: digital signaturesGold mineExpect that if VeriSign has the key authority, they'll require VeriSign certificates. In effect, this will amount to VeriSign being paid for every domain, and considering the number of domains at stake and VeriSign's rates, that's a [b]very[/b] large sum of money that...

Tags: Domain names, NETWORKING, SECURITY, DNS, VeriSign Inc., e-mail, DNS machine, centralized authority, DNSSEC, digital signature

Discussion threads 2008-10-10

Additional Resources

VeriSign sets timetable to fix DNS hole

VeriSign has said a significant outstanding internet security vulnerability will be closed by 2011, after delays caused by technical aspects of the implementation. VeriSign has said a significant outstanding internet security vulnerability will be closed by 2011, after delays caused by technical aspects of the implementation. ...

Tags: DNS, VeriSign Inc., Internet Security, Internet, Domain Names, Security, VeriSign, security, Tom Espiner

News items 2009-11-16

TechNet Webcast: Windows 7 Seamless Network Access (Level 300)

The attendee of this webcast will discover how networking capabilities in Windows 7 can reduce IT costs, improve productivity, and make it easier to manage than other operating systems. The presenter of this webcast will discuss the challenges of managing a network and how Windows 7 network solutions address the...

Tags: Microsoft Access, Webcast, Network, Microsoft TechNet, Microsoft Windows 7, Microsoft Windows, Networking, Operating Systems, Software

Webcasts 2009-07-01

Spam: You just can

Spam: You just canI have won!I have blocked the entire world except for the United States and a few IP ranges have been blocked due to the fact they are spammers from overseas...After blocking the Eastern world my problems went away!:)Yes, you can win against SPAM.Here's one solution: create a...

Tags: Spam, Cyberthreats, e-mail, spammer

Discussion threads 2009-01-30

Windows 7: What does 'feature complete' mean?

Windows 7: What does 'feature complete' mean?Feature Complete?Windows 7 at this point will almost certainly not be feature complete in any sense than they're not adding any more features to it.I'm still waiting for the official beta, and checking my connect account each day in anticipation, but I can already...

Tags: Smart phones, Operating systems, Handhelds, Microsoft Windows 7, Microsoft Windows, virtualization layer, virtualization, smart phone

Discussion threads 2008-12-30

Gmail, Yahoo and Hotmail systematically abused by spammers

Gmail, Yahoo and Hotmail systematically abused by spammersI could have told them that for free.They needed a study and a report to tell them that The big 3 are little more than Spam sewers these days?Like I keep saying...my mail servers would be shut down if they were spewing spam....

Tags: Cyberthreats, E-mail providers, spam, PGP Corp., e-mail, Google Gmail, MSN Hotmail, Yahoo! Inc.

Discussion threads 2008-12-10

With or without McColo, spam volume increasing again

With or without McColo, spam volume increasing againProposalLet's start sending all paper mail with no envelopes.Why not? What's that you say? Privacy? Hmmm. That's reasonable.Then, maybe we should send emails enclosed in 'envelopes', Yes?What a great idea! Envelopes. (I kid.)Seriously, What is obvious to me is...

Tags: Spam, Domain names, e-mail, spammer

Discussion threads 2008-12-09

US proposes DNS fix: digital signatures

The Commerce Department is considering deploying digital signatures to make DNS less susceptible to hacking, ComputerWorld reports. Under the proposal, DNS records would be signed by DNSSEC Domain Name and Addressing System Security Extensions. There have been some commitments to the system for the following top-level domains:...

Tags: Digital Signature, DNS, ICANN, Domain Names, Digital Signatures, Authentication/Encryption, Networking, Security, Internet, Richard Koman

Blog posts 2008-10-10

How OpenDNS, PowerDNS and MaraDNS remained unaffected by the DNS cache poisoning vulnerability

The short answer is being paranoid about tackling a known vulnerability. It's 2001, and Daniel J. Bernstein DJB, author of the then popular djbdns security-aware DNS implementation, is applying basic math principles to raise awareness on what's to turn into the "sky is falling" critical Internet vulnerability in 2008, in...

Tags: DNS, Vulnerability, Anomaly, Attack, OpenDNS, MaraDNS, NSS, Domain Names, Networking, Internet, Dancho Danchev

Blog posts 2008-07-25

Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon

I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work...

Tags: CERT, DNS Server, Domain Names, Internet, Kaminsky, Nathan McFeters, Patches, Security, Server

Blog posts 2008-07-24

|)ruid and HD Moore release part 2 of DNS exploit

|)ruid and HD Moore release part 2 of DNS exploitSo, Linux's BIND the first to be exploited...So, Linux's BIND the first to be exploited...Nice work!CoolNate, nice post and analysis!Wasn't the replacing the ns.victim.com cache entry part of the Halvar Flake speculation? I thought first part of the exploit was to...

Tags: Domain names, NETWORKING, Operating systems, Alecco, DNS, ruid, exploit, HD Moore, Linux

Discussion threads 2008-07-24

Gmail, PayPal and Ebay embrace DomainKeys to fight phishing emails

Brad Taylor, Google's Gmail Spam Czar, has just posted details on the ongoing cooperation with PayPal and Ebay, two of the most targeted brands in phishing emails, the effect of which is rejecting compared to flagging as spam each and every email pretending to be coming from paypal.com and ebay.com...

Tags: Google Gmail, DomainKeys, PayPal, eBay Inc., Authentication, E-mail, Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Online Communications, Spam And Phishing, Dancho Danchev

Blog posts 2008-07-09

Kaminsky and Ptacek comment on DNS flaw

Well, well, well, what a day for security news! I got a chance to get the scoop word of mouth from Dan Kaminsky of IOActive (pictured above [image courtesy of quinnums]) and Thomas Ptacek of Matasano pictured below on the DNS flaw that's been all over the...

Tags: DNS, Flaw, Nate, Domain Names, Networking, Security, Internet, Nathan McFeters

Blog posts 2008-07-08

Cache poisoning flaw is death knell for BIND 8

The Internet Software Consortium has pulled the plug on support for Version 8 of the BIND Berkeley Internet Name Domain DNS implementation after the discovery of a serious vulnerability that could lead to cache poisoning attacks. The flaw, publicly discussed in a paper by Trustee's Amit...

Tags: BIND, Internet Software Consortium, Flaw, ISC, BIND 9, Ryan Naraine

Blog posts 2007-09-04

RPC DNS exploit can compromise your whole company

RPC DNS exploit can compromise your whole companyInsert Bash Microsoft Statement BelowAlthough BIND and others have had their share of DNS problems, I know the Zealots are aching to comment on the poor design of Microsoft's DNS.Restart DNS serviceStopping and restarting the DNS service enables the registry hack and blocks...

Tags: Domain names, NETWORKING, SECURITY, DNS, RPC, BIND, perimiter firewall, RPC DNS, internal network, DMZ-Server, DNS Service, whole company, network, firewall

Discussion threads 2007-04-18

Marcus Sachs on securing the homeland

Prior to the Churchill Club event, "Masters of Cybercrime: The Ultimate Battle of Good and Evil," I spoke with Marcus Sachs, one of the nation's top cyberwarriors. He is currently a computer scientist at SRI International and under contract with the U.S. Department of Homeland Security DHS as deputy director...

Tags: Marcus Sachs, U.S. Department Of Homeland Security, Sach, Domain Names, Digital Music, Podcasts, Homeland Security, Digital Media, Security, Internet, Personal Technology, Government, Consumer Electronics, Dan Farber

Blog posts 2005-06-02

SecureDNS 9.2.1 (Mac)

SecureDNS is an implementation of the ISC BIND 9.2.1 software that runs in what is known as a "chroot environment". A chroot environment adds an extra layer of security by limiting a process to it's own portion of the filesystem. Should the process in question become compromised, then the attacker...

Tags: Apple Macintosh, Environment, File System, Server, Server Logistics, SecureDNS, Security

Software downloads 2003-02-26