Ian G wrote:
http://www.ebcvg.com/articles.php?id=651
Pharming - a new technique for Internet fraud
DNS cache poisoning isn't new. It's only new to the press.
A real world example was documented at
http://www.theregister.co.uk/2005/03/08/dns_malware_attack/
SECDNS will help with that. Then the next attack after that
is a routing attack, or transparent proxy attack.
Same result, different means.
SECDNS helps, but isn't sufficient. With SECDNS in place,
you STILL don't know that the server to which you've actually
connected is the one that rightfully claims the DNS name you've
tried to reach. You only know that you got the right IP address.
But you may have connected to the wrong box, despite having the
right IP address. SECDNS doesn't prevent MITM attacked based on
routing or proxying.
Quite a few people are fond of saying the SSL is just secure DNS,
and that DNS will obviate SSL. But it isn't so.
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto
