I'm not sure this is on-topic for this list, but may be an illustrative
story....
I had some percentage of the queries for a domain I use hijacked by an
attacker last week. The technique involved was interesting to me.
Moral: Know your secondaries, and what happens to them..... if someone
steals your secondary's NAME, you're toast.
If I'd had DNSSEC, and the people looking it up had had DNSSEC, this would
have been a detectable DOS attack, not a stealth redirection attack.
Detailed writeup: http://www.alvestrand.no/subjects/dns-attack-1.html
Harald
.
dnsop resources:_____________________________________________________
web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html
mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
