Our friend and colleague Dan Kaminsky has passed away of complications from diabetes. He was the discoverer/inventor of the DNS vulnerability that came to bear his name, the ability to take over whole swaths of domains much more easily than had previously been thought possible.
Announcement from his niece: https://twitter.com/sarahbrie/status/1386384261133922310 There are many pages that describe the vulnerability to varying degrees of depth. The key to it is first poisoning caches for the authority records of a zone. This lets an attacker then redirect many records within the zone at their leisure. Here's one write-up about it: http://unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html An entertaining, short video of the early stages of his experience with the vulnerability: https://www.youtube.com/watch?v=B-v_wJIJUI4 For those who had not met him, he had a generous heart and a quick wit. I will miss him. _______________________________________________ dns-operations mailing list dns-operations@lists.dns-oarc.net https://lists.dns-oarc.net/mailman/listinfo/dns-operations
