15 posts • joined Tuesday 29th January 2008 14:20 GMT
I wrote about this on El Reg over 4 years ago!
Re: I'm sure we'll see more of this
It's got nothing to do with zone transfers, disabling zone transfers doesn't affect the ability of someone to query a DNS server and spoof the source IP address.
I'm sure we'll see more of this
I run DNS training courses and have been warning about this type of attack for years, I am surprised it has taken so long for a big attack such as this to come to the fore, unfortunately due to all the publicity, I can't help thinking we will see many of these types of attacks from now on, DNSSEC makes it so much easier to achieve due to the quantity of data now present in signed zones, example here...
Every contract I have ever signed or issued has had a clause enabling termination in the event of insolvency or administration, AWE have simply exercised this clause, it's pretty standard.
Honestly, you couldn't make this shit up!
We produce our own software, we have just certified our latest release against FF9. Now FF10 is out, I can't redo all our certification. How are we supposed to keep up? How are corporates supposed to keep up?
Stop incrementing the major version number as it causes us and our customers an application certification nightmare!
Promo code does not work
I tried the promo code, "TABLET10" is supposed to be valid until 25th Jan but Dixons web site (and PC World) state rather dryly: "This promotional code is not applicable".
Yes, very good, and it's not even April 1st.
Anyone can take an already opened box, take out the contents, then put in some wrap and diddy-ikkle product to make it look like HP are being bad.
Nice try but I'm too cynical to be taken in by this.
DNSSEC opens another an of worms
People say that DNSSEC is the answer but it's too unwieldy. Have you seen the size of the response packets? You could use DNSSEC to invoke a DNS amplification attack and DDoS your target with a mass of DNSSEC replies. I'm not sure it is the complete answer, we almost need to have a completely new way of achieving DNS type functionality, but without using the DNS protocol.
This is going to be a nightmare for corporates who want to protect their brand name. For instance, Cisco have registered in just about every TLD going, but if new TLD's are popping up all over the place they will have to be extremely vigilant so that some miscreant doesn't appropriate their brand name for their own nefarious uses.
Multiply this by the number of large corporates who will want to protect their brand name and you have a huge money making opportunity here.
Do we really need this? I dunno, I reckon the amount of phishing going on will increase dramatically, especially when you combine IDN's with it all too. It's going to get in a right old mess.
Monty Python predicted this years ago!
Wasn't there a Monty Python sketch about this... "I'm so worried about the baggage retrieval system at Heathrow" or something? Pretty sure it's on "The Final Rip-off" but can't check right now.
Why no 1600x1200 anymore?
Must admit, the first thing I did when I got my T60p was de-install active shock protection and most of the other junk that was pre-loaded. Does that APS stuff actuall "do" anything? Call me a bit sceptical but I mean if I drop my lappy, what good is that stuff going to do? Also I couldn't believe how much memory was being used up by all the "value-added" software Lenovo installed on it.
Two of my buddies here are running Ubuntu on theirs, I'm running XP but I do find hard disk access seems a bit slow despite having a 7200rpm drive. It takes ages to boot. :-(
But I really miss the 1600x1200 display on my 4 year old Dell C-series laptop. This T60p has a 1680x1050 which can be really annoying at times as I got so used to the 1200 vertical res on my Dell. Why oh why don't manufacturers do a 1600x1200 screen anymore? You can't seem to get them anywhere now.
They've missed the boat already
I think if Toshiba and whoever else really wanted to get HD-DVD out there they should have done a deal with Microsoft at the start to ship the Xbox 360 with an HD-DVD player, or at least got them to include it in one of the later models like the Elite. I don't know anyone who would pay 120 quid for an add-on player for the 360, but if it was built into the console from the start it would have been a no-brainer.
Seems like a missed opportunity to me.
- Product Round-up Smartwatch face off: Pebble, MetaWatch and new hi-tech timepieces
- Geek's Guide to Britain The bunker at the end of the world - in Essex
- FLABBER-JASTED: It's 'jif', NOT '.gif', says man who should know
- If you've bought DRM'd film files from Acetrax, here's the bad news
- Microsoft reveals Xbox One, the console that can read your heartbeat