Network Security: Detailed info on Re: DNS cache poisoning?

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Incidents

[Top] [All Lists]

Re: DNS cache poisoning?

from [Joel Esler] Network Security

[Permanent Link]

Subject:	Re: DNS cache poisoning?
Date:	Tue, 16 Aug 2005 12:27:15 -0400

Why are you using NT4?

..back to lurking...

On 8/15/05, Willard Van Dyne <wvandyne@hotpop.com> wrote:

Good day!

Our DNS server has been crashing far too frequently as of late.
The OS is WinNT4 SP6.

Many of the error messages in the system log goes like this:

"6/26/05,1:43:58 PM,Dns,Error,None,5108,N/A,DNS,DNS Server created CNAME
loop loading CNAME at resalehost.networksolutions.com.. One link in CNAME
loop:  DNS name resalehost.networksolutions.com. is alias for CNAME
resalehost.networksolutions.com.. See adjoining messages for other links in
CNAME loop."

A Google search about the problem gets us reports that this looks like a
"cache corruption" vulnerability on Windows NT servers, and has to be patched.

Is this true in our case?
If so, why is networksolutions.com doing this?
If not, is our network under attack by some other means?

I hope someone can enlighten us. Thanks!

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
DNS cache poisoning?, Willard Van Dyne Re: DNS cache poisoning?, Joel Esler <= Re: DNS cache poisoning?, Willard Van Dyne Re: DNS cache poisoning?, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] RE: DNS cache poisoning?, James C Slora Jr Re: DNS cache poisoning?, chad Re: DNS cache poisoning?, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] Re: DNS cache poisoning?, David Pick RE: DNS cache poisoning?, Rabinowitz, Michael CTR MDA/ION Re: DNS cache poisoning?, chad Message not available Re: DNS cache poisoning?, David Glosser

Previous by Date:	Re: New Virus?, Eduardo Vela
Next by Date:	RE: New Virus? The AV Vendors respond (long post), Alex Arndt
Previous by Thread:	DNS cache poisoning?, Willard Van Dyne
Next by Thread:	Re: DNS cache poisoning?, Willard Van Dyne
Indexes:	[Date] [Thread] [Top] [All Lists]