Application security encompasses measures taken throughout the application's life-cycle to prevent exceptions in the security policy of an application or the underlying system (vulnerabilities) through flaws in the design, development, deployment, upgrade, or maintenance of the application.

Sunday, September 4, 2011

DNS Poison

Now many DNS servers have bad results cached. Please flush the cache of your recursive DNS servers and protect your organisation websites from defacements and DNS poisoning.

Host names and IP addresses to watch:

ns1.yumurtakabugu.com. or 68.68.21.195
ns2.yumurtakabugu.com. or 68.68.21.196
ns3.yumurtakabugu.com. or 68.68.21.197
ns4.yumurtakabugu.com. or 68.68.21.198

IP Address used as A record for affected domains: 68.68.20.116

In particular IP addresses may change at any time. Please keep watching them and remove from blacklist as appropriate.

Here are a few examples of the sites so far:

a) ups.com
b) theregister.co.uk
c) acer.com
d) telegraph.co.uk
e) betfair.com
f) vodafone.com
g) nationalgeographic.com


Referance: SANS

No comments:

Post a Comment