Don's Pages and my Music

Monday, December 7, 2009

Is Google Public DNS safe? Look at the source ports - InternetNews:The Blog - Sean Michael Kerner

Is Google Public DNS safe? Look at the source ports
By Sean Michael Kerner on December 4, 2009 9:26 AM
googlecodegif.gif
From the 'H D Moore Knows' files:

Yesterday, Google launched its new Public DNS service. Among the
benefits that Google is claiming for the new service is that it helps to
secure DNS for users.

Is that an accurate claim?

One of the big issues that security researcher Dan Kaminsky disclosed
about DNS insecurity in 2008 was that DNS request information isn't
quite as random as it should be. The way DNS works is that each DNS
request is supposed to carry with it a random number transaction ID. But
it turns out that the random number is only one out of 65,000. DNS is at
risk when there isn't enough randomization and a hacker can 'guess' the
number.

So is Google's Public DNS random enough?

Read more...
http://blog.internetnews.com/skerner/2009/12/is-google-public-dns-safe-look.html

Don

No comments:

Post a Comment