Read up on the latest ideas and technologies from companies that sell hardware, software and services. Taking On Demand CRM Integration to the Next Level
CRM your salespeople will love
Enterprise Wireless WLAN Security
Vendor Influence Curves And How You Can Get The Best Value Out Of Your Network
Delivering the Power of Choice with Microsoft Dynamics CRM
Email Archiving Implementation: Five Costly Mistakes to Avoid
Cutting printer costs
Best Practice in Building an Integrated Information Management Strategy
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
Customers of small Internet Service Providers (ISPs) may be at risk of online fraud, following the industry's lax response to securing against the recently discovered Domain Name System (DNS) cache poisoning flaw.
The flaw was publicly revealed early last month when security vendors including the Internet Systems Consortium (ISC), Cisco, Debian and Microsoft released patches after about six months of quiet collaboration. IOActive researcher Dan Kaminsky discovered the hole in January this year.
Kaminsky alerted the US Computer Emergency Readiness Team (US-CERT) and multiple vendors to the flaw and all agreed to keep mum on the vulnerability until a fix was developed.
The attack can be used as a vector to deliver a variety of payloads to the customers of ISPs with unpatched DNSs, ranging from financial fraud via phishing scams, to infection with malicious applications. Hackers can trick almost any DNS server into associating malicious IP addresses with legitimate domains.
Telstra, Optus, Internode and iiNet have confirmed to Computerworld their DNSs are patched, however, sources reveal many DNS admins have yet to fix the flaw, despite being notified by security researchers, and nagged by concerned ISPs and Web masters.
iiNet network engineer Mark Newton said smaller ISPs may lag behind patching because of the work required to secure their DNSs.
"[DNS patching] has probably slowed down because the procedure effectively requires customer-facing DNS servers to be segregated from the domain-hosting servers," Newton said.
"Most ISPs don't [segregate the servers] because it is cheaper and easier to keep them in one box. There has not been a compelling reason to segregate them until now, which is probably why it is taking some ISPs a long time to secure themselves.
"A hacker could make a fake bank Web site, find a vulnerable resolver, and poison its cache so that customers using that resolver are directed to the fake address instead of the bank Web site."
Commonwealth Bank chief information security officer Sarv Girn said the bank is confident its security processes will protect its customers.
"The bank is aware of situation and we are quite comfortable as we have the tools in place to monitor the situation, which complement our existing capability in both Hawk-I and two factor authentication," Girn said.
"The major IT vendors have also taken appropriate steps by introducing patches to counteract this problem so we will continue to monitor the environment for any anomalies."
A Telstra spokesperson said the company patched its DNSs immediately after a fix was issued.
ISC support engineer Alan Clegg urged DNS administrators to read the organisation's presentation on how to fix the flaw.
Computerworld Member Login
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Fujitsu PC targets Today's Young Adults with the release of the L series 2008-10-14 12:40:00+10
RSA survey shows employees’ everyday behaviours puts sensitive business information at risk 2008-10-14 11:29:00+10
Sound Alliance Group expands with acquisition of Mess+Noise 2008-10-14 08:48:00+10
Sterling Commerce Introduces New Managed File Transfer Capabilities That Cuts Server Change Management Time in Half 2008-10-14 08:41:00+10
Simms Exclusive Distributor of Cygnett MP3 Accessories 2008-10-14 08:10:00+10
Email Archiving Implementation: Five Costly Mistakes to Avoid
Email Archiving is essential for managing email data, but is potentially expensive to implement. Read on to discover the five key areas where email archiving costs can be contained, including data capture methods and default configuration methods.
