Re: Cache Poisoning Detection via ONZRA's CacheAudit

North American Network Operators Group

Re: Cache Poisoning Detection via ONZRA's CacheAudit

From: Matthew Black
Date: Fri Aug 01 18:26:04 2008

List-archive: <http://mailman.nanog.org/pipermail/nanog>
List-help: <mailto:nanog-request@nanog.org?subject=help>
List-id: North American Network Operators Group <nanog.nanog.org>
List-post: <mailto:nanog@nanog.org>
List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:nanog-request@nanog.org?subject=subscribe>
List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:nanog-request@nanog.org?subject=unsubscribe>

On Fri, 1 Aug 2008 13:20:45 -0700
 Jose Avila <jose@xxxxxxxxx> wrote:

In light of new attack vectors DNS Cache Poisoning discovered by Dan Kaminsky, ONZRA has developed a free Open Source (BSD License) tool called CacheAudit. This tool allows recursive providers to detect cache poisoning events using cache dumps from their DNS servers. Along with releasing this tool, ONZRA has also released a white paper describing the validation process.
Main Tool Page: http://www.onzra.com/cacheaudit.html
White Paper: http://www.onzra.com/RecursiveDNSCacheAuditingWhitepaper.pdf

Main Tool Page: http://www.onzra.com/cacheaudit.html


LOL. Now that's funny! I get a completely black screen
with Firefox and IE. I briefly glanced at the HTML src
code (CTRL-U) but don't want to burn brain cells figuring
out what you have to say.

matthew black
network services
california state university, long beach

Follow-Ups:
- Re: Cache Poisoning Detection via ONZRA's CacheAudit Jose Avila

References:
- Cache Poisoning Detection via ONZRA's CacheAudit Jose Avila

Prev by Date: Cache Poisoning Detection via ONZRA's CacheAudit
Next by Date: Re: Cache Poisoning Detection via ONZRA's CacheAudit
Date Index
Thread Index
Author Index
Historical