security
Dan Lyke
danlyke at flutterby.com
Wed Oct 25 03:13:06 UTC 2006
On Tue, 24 Oct 2006 19:16:43 -0700, Alaric Dailey wrote:
> DNS poisoning generally happens against a specific domain, to
> downstream routers, especially windows DNS server, by poisoning
> the cache (much easier to do, not to mention harder to detect)
> rather than modifying the root DNS.
Right. So when we're talking about a DNS exploit, we're talking about
something that's unlikely to affect both the Relying Party and the
User, just one of them. Not that, as I understand the problem more,
that's a concern, but we're at the "let's be really clear about what
the vulnerabilities really are as we see them" stage of the
conversation.
Dan
More information about the general
mailing list