24th February 2010
|
Administrator
|
|
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,132
|
|
Comcast (finally) brings security extensions to DNS
From http://www.theregister.co.uk/2010/02/24/comcast_dnssec/
Quote:
Comcast - one of the largest ISPs in the US - has deployed new technology designed to protect the internet against a well-known form of attack that allows attackers to surreptitiously lure end users to impostor websites.
For now, Comcast users who want to use the technology, known as DNSSEC, or DNS Security Extensions, must manually configure their preference by changing their DNS server's IP addresses to 75.75.75.75 and 75.75.76.76, Comcast said on Tuesday. By the end of next year, the ISP plans to make DNSSEC available to all of its customers.
|
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
|