Security Balancetrying to bring balance to the Force |
 |
Mike Rothman wrote a very good article about the results of what he saw in Black Hat. I really appreciate the tips that he is giving in this article, like putting focus on containment and monitoring/detection. This is exactly the way that I think internal network security should be made.
This is one of those vulnerabilities than can really bring big problems (like very aggressive worms and viruses) .
The vulnerability is in the Windows DNS client. It seems that it can be exploited by specially crafted Resource Records (RR) in responses from a malicious server. They are not RRs usually present in common users [...]
I still haven’t found detailed information about MS06-041, but it seems to be related to the Windows DNS client.
DNS client vulnerabilities are freaking scary. Depending on what the problem is about one can exploit thousands of workstation with a single DNS server and a mass mailed HTML e-mail. Patch as soon as the update [...]
Schneier posted a comment today in his blog about an idea from Dave Piscitello mentioned in the Firewall Wizards mail-list. Dave says that besides the already known concepts Authentication, Authorization, Availability and Authenticity, there is also need for “admissibility”. This concept is related to the trustiness of the other endpoint of the connection (like if [...]
