DNS Expert Calls for Preparedness in Face of Potentially More Frequent and More Damaging Attacks on DNS.DNSstuff.com unveils one of the first public root server time maps to track performance and minimize business risk; Recent survey data reveals that 70% of all DNS servers A dedicated server or a service within a server that provides DNS name resolution in an IP network. It turns names for Web sites and network resources into numeric IP addresses. DNS servers are used in large companies, in all ISPs and within the DNS system in the Internet, a vital service have one or more improperly configured con·fig·ure tr.v. con·fig·ured, con·fig·ur·ing, con·fig·ures To design, arrange, set up, or shape with a view to specific applications or uses: settings NEWBURYPORT, Mass. -- DNSstuff.com, a global leader in DNS (Domain Name System) A system for converting host names and domain names into IP addresses on the Internet or on local networks that use the TCP/IP protocol. For example, when a Web site address is given to the DNS either by typing a URL in a browser or behind the issues and tools with one of the largest communities of IT professionals on the Web, today issued a warning and called for greater preparedness pre·par·ed·ness n. The state of being prepared, especially military readiness for combat. Noun 1. preparedness - the state of having been made ready or prepared for use or action (especially military action); "putting them as a result of the recent attack targeting root servers. This attack is the latest in a series of distributed denial-of-service attacks "DoS" redirects here. For other uses, see DOS (disambiguation). A denial-of-service attack (DoS attack) is an attempt to make a computer resource unavailable to its intended users. targeting DNS servers that began late last year. DNSstuff.com today also introduced a new root server time map tool designed to help IT professionals track the performance of and possible attacks on these servers. "It is likely that this latest apparent probing effort was testing the resiliency The ability to recover from a failure. The term may be applied to hardware, software or data. of DNS," explained Paul D. Parisi, CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey. of DNSstuff.com. "This could be a harbinger har·bin·ger n. One that indicates or foreshadows what is to come; a forerunner. tr.v. har·bin·gered, har·bin·ger·ing, har·bin·gers To signal the approach of; presage. of more targeted attacks against .com parent servers or even individual enterprise servers, neither of which may have the resiliency or redundancy of the systems attacked earlier this week. Either of these scenarios could have catastrophic consequences for the Internet-at-large or specific organizations." New Tool to Spot Attacks The new DNSstuff.com root server time map allows IT professionals to monitor the state of root and .com servers supporting DNS. Now anyone can check real-time performance of these servers to spot long latency (1) The time between initiating a request in the computer and receiving the answer. Data latency may refer to the time between a query and the results arriving at the screen or the time between initiating a transaction that modifies one or more databases and its completion. times or unusual behavior in response times. The root server time map can be found at http://www.dnsstuff.com/info/roottimes.htm. Even without an increase in targeted or malicious Involving malice; characterized by wicked or mischievous motives or intentions. An act done maliciously is one that is wrongful and performed willfully or intentionally, and without legal justification. DESERTION, MALICIOUS. attacks on DNS servers, many of those same servers remain vulnerable or are performing poorly because of simple human error. There are over 85 million domains on the Web, and a survey by DNSstuff.com of its users revealed that there are significant, fixable configuration issues with DNS settings for nearly 70% of those active domains. These incorrect settings can lead to site outages or improperly routed email, and a targeted attack exploiting these settings could lead to even more widespread network and Internet outages. Simple Prevention Settings "We are a robust web application and the Web's acknowledged leader in helping IT professionals better manage their networks and DNS through expert advice, best practices and relevant resources," continued Parisi. "Unfortunately, many people are relying on improperly configured DNS and are unintentionally leaving themselves, and therefore the web, vulnerable to attack." There are some simple steps that can be taken to improve DNS security at an enterprise level. These include maintaining a minimum of two physically and geographically separate servers to help thwart a denial-of-service attack, and proper configuration of your Primary and Secondary name servers to utilize the natural resiliency of DNS. More tips and information for DNS configuration can be found at DNSstuff.com or by signing up for the company's monthly IQ Mail by emailing DNSIQ@dnsstuff.com. About DNSstuff.com DNSstuff.com is the Web's premiere destination for DNS professionals, offering free online tools to monitor and maintain one of the most vital, yet vulnerable, lynchpins in the infrastructure supporting the Web - the Domain Name System. DNSstuff.com is a web application providing expertise and all the tools necessary to ensure that your DNS operates smoothly, efficiently and safely. It is one of the largest and most trusted communities of IT professionals on the Web, and can be found at www.dnsstuff.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion