Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: FW: Root Domain Server Hacked.

  • From: Sean Donelan
  • Date: Fri Jul 02 20:58:55 1999

rmeyer@mhsc.COM (Roeland M.J. Meyer) writes:
>That's not what Paul said.
>> Randy Bush writes:
>> this is false and specious garbage

Both statements are true.  You can hijack domain names and insert
bogus data in caches without hacking any root servers.  It is much
easier to just e-mail a domain modify template to NSI, and insert
some bogus IP addresses for certain names.  Similar to what happened
to AOL last year (actually it appears to be a glue issue on some NS
records).

I haven't seen NSI official statements myself, only the news reports.
But there is no evidence any of the independently operated root-name
servers were hacked.  If any systems were hacked, they were NSI's
registration process.

I think some people are getting too wrapped up in some really exotic
attacks on DNS, when the simple ones still work.  Maybe BEFORE-UPDATE
will get finished now.
-- 
Sean Donelan, Data Research Associates, Inc, St. Louis, MO
  Affiliation given for identification not representation





Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.