Thread: US-CERT TCSA TA08-190B -- Multiple DNS implementations vulnerable to cache poisoning
View Single Post
  #4  
Old July 10th 08, 07:00 AM posted to microsoft.public.win98.gen_discussion
Franc Zabkar
External Usenet User
  
Posts: 1,702
Default US-CERT TCSA TA08-190B -- Multiple DNS implementations vulnerable to cache poisoning
On Wed, 09 Jul 2008 15:55:09 -0700, smith put finger
to keyboard and composed:

Franc Zabkar wrote in
:

To find out if the DNS server you use is vulnerable, click
the "Check My DNS" button at this URL:
http://www.doxpara.com/

I tried this and got a "your name server appears vulnerable
message."

However I noticed that the ip address in the message did not
match the address for my DNS server in winipcfg.

Is this normal that these two addresses would differ?

I don't know, but in my case I've configured my router to use DNS
Relay. This means that winipcfg shows my router's LAN IP as the DNS
server address, and any DNS requests sent to it are relayed to one of
two DNS servers whose addresses the router has learned from my ISP via
PPP. Is it possible that your router is configured like mine, ie is
your DNS IP, as reported by winipcfg, a LAN or WAN IP?

- Franc Zabkar
--
Please remove one 'i' from my address when replying by email.