[78517] in North American Network Operators' Group
Re: DNS Blackhole attack
daemon@ATHENA.MIT.EDU (Ketil Froyn)
Mon Mar 7 06:40:40 2005
From: Ketil Froyn <kfroyn@gnr.com>
To: "william(at)elan.net" <william@elan.net>
Cc: nanog@nanog.org
In-Reply-To: <Pine.LNX.4.44.0503051441470.31362-100000@sokol.elan.net>
Date: Mon, 07 Mar 2005 11:38:53 +0000
Errors-To: owner-nanog@merit.edu
On Sat, 2005-03-05 at 14:43 -0800, william(at)elan.net wrote:
> Global DNS cache poisoning attack?; Update...
It's a bit frustrating that problems this old and well-known can
actually be used to cause damage.
The easiest way to check if you are vulnerable to DNS poisoning is to
try to poison yourself. Try my "poison yourself" page here:
http://ketil.froyn.name/poison.html
It tries to redirect www.example.com to a fake IP (the same one as I
host my website on), where I have a virtualhost for www.example.com with
a plain html page. It'll tell you if you were poisoned.
Cheers,
Ketil Froyn
