Now Available:

Featured Resource:

line

Realtime Communities

line

Newsletter

Email Address:


line

Monthly Archives

line

RSS

line

Ask the Expert

Have a question for our resident expert? Email your questions to Greg.

« Tuesday "Just for Fun": OMG, Get that Phone Away From your Ear! | Main | Windows Mojave...is...Windows Vista... »

Patch DNS Now. Seriously.

Weaponized attack code. Sounds painful, and it is. If you haven't patched your Windows DNS servers with MS08-038 you may find yourself with big problems.

Specifically, attackers have discovered a major hole in DNS that allows them to insert their own malicious addresses into your cache entries. By simply attempting to navigate to what you believe to be a good site, you could infect large swathes of machines on your network as your poisoned DNS sends you to a different and more nefarious site.

More information about the flow can be found here. A look at what exactly is being modified within an infected DNS server's records can be found here.

Do it now. Do not delay.

Tags:      
 Email This!  Digg it!  Sphere it!  Del.icio.us  Reddit!  Newsvine

Posted by Greg Shields on July 30, 2008 12:30 AM |

TrackBack

TrackBack URL for this entry:
http://www.realtime-windowsserver.com/type/mt-tb.cgi/898

Post a comment

(All comments are approved by site leader before appearing here. Thanks for commenting!)

Search

line

Most Active Posts

line

Library Resources

line
line

Recent Posts

line

Categories

line

Greg Shields' Bio:

Greg Shields, is an independent author, instructor, and IT consultant based in Denver, Colorado, and a co-founder of Concentrated Technology. With nearly 15 years of experience in information technology, Greg has developed extensive experience in systems administration, engineering, and architecture specializing in Microsoft systems management, remote application, and virtualization technologies. Greg is a Contributing Editor for Redmond Magazine, MCPmag.com, and Virtualization Review Magazine and is the author of five books, including Windows Server 2008:  What’s New / What’s Changed. Greg is also a highly sought-after instructor and speaker, speaking regularly at conferences like TechMentor Events, and producing computer-based training curriculum for CBT Nuggets.  Greg is a recipient of Microsoft "Most Valuable Professional" award with a specialization in Windows Terminal Services.