[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Working to get more people to check if their infected with DNS Changer

To: Gage Bystrom <themadichib0d@xxxxxxxxx>
Subject: Re: [Full-disclosure] Working to get more people to check if their infected with DNS Changer
From: Valdis.Kletnieks@xxxxxx
Date: Wed, 04 Apr 2012 14:41:25 -0400

On Wed, 04 Apr 2012 10:09:12 -0700, Gage Bystrom said:

> You forget that the culprits have already been caught, no one is there in
> order to issue an update to circumvent the check site.

In *this* case.  Just keep in mind the *general* case where the miscreants are
still on the loose and can still target you for mischief. In that case,
demonsdebason is right - checking a DNS mapping without DNSSEC or similar isn't
guaranteed to reveal an infection, because the attacker can still lie to you...

Attachment: pgpD35npZNi3j.pgp
Description: PGP signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Working to get more people to check if their infected with DNS Changer
  - From: Gage Bystrom

Prev by Date: [Full-disclosure] [Security-news] SA-CONTRIB-2012-056 - Janrain Engage - Sensitive Data Protection Vulnerability
Next by Date: Re: [Full-disclosure] www.LEORAT.com is scam
Previous by thread: Re: [Full-disclosure] Working to get more people to check if their infected with DNS Changer
Next by thread: [Full-disclosure] Sourcefire Defense Center - multiple vulnerabilities.
Index(es):
- Date
- Thread