From my email summary to some friends:
Most folks' dns servers have a vunerability (cache poisoning) discovered by Dan Kaminsky. The vulnerability is due to a design flaw in dns itself. Based on his work, network people have been working secretly on a patch for months. ISPs need to patch their dns servers immediately, but it won't be done instantly, and some probably won't patch at all. Meanwhile, details leaked out and an exploit has been published. Kaminsky himself recommends switching to OpenDNS, which, by the way, is free and has many cool features. And it seems that trustworthy people trust OpenDNS.
Switching was an easy change in my router, which is running open-source dd-wrt.
21:13 | link | | |
A facility for quotation covers the absence of original thought.—Lord Peter Wimsey
Left column Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.
And the Word became flesh and dwelt among us.—St John of Patmos
Right column Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.