There is a vulnerability (Cert Advisory) in the Internet Domain Name System (DNS) that will probably be exploited in the coming weeks. The guy that forced the Internet community to deal with the vulnerability has a test button on his website that will show if you are vulnerable. Go to Dan's site at http://www.doxpara.com/ and do the test.
If you are vulnerable and want a temporary fix and you are using Windows XP, do this.
- Open Control Panel
- Double click Network Connections
- Double click the active network connection
- Click the Properties tab
- Double click Internet Protocol (TCP/IP)
- Select Use the following DNS server addresses
- Put these addresses in for Prefered and Alternate 208.67.222.222, 208.67.220.220
- Close the windows with OK, OK, Close
Your computer will now use the OpenDNS servers instead of your ISP or whoever else you were using. The OpenDNS servers have been patched to protect against the vulnerability
Try the test again to make sure things are right.
In a few months, return to your automatic DNS servers and try the test. If your ISP has fixed things, leave it as is. If not, go back to the OpenDNS servers.
Here is another DNS test site. DNS-OARC
Use this advice at your own risk. I am not responsible for any outcome.
No comments:
Post a Comment