DNS Randomness Test

Discussion in 'Windows Vista Security' started by Kayman, Jul 28, 2008.

  1. Specifically what didn't you understand? I'll try to explain what I
    meant in any of my previous posts.

    Killfile me if you want, but there is no need to announce it unless
    you are trolling.
     
    FromTheRafters, Jul 30, 2008
    #21
    1. Advertisements

  2. Kayman

    John Guest

    Thanks Kayman. I use (my ISP) DNS IP addresses as forwarders on my Windows
    DNS system. I guess what I can do is change the forwarders IP addresses to
    the ones that have been detected as GOOD.

    Btw, http://www.dnsstuff.com/ has a DNS vulnerability check too. Also, if
    you haven't heard, check this out:
    http://www.networkworld.com/news/2008/073008-dns-attack-writer-a-victim.html
    Contact our ISP? That's a scary thought. I sent them an email last week,
    asking them if they have fixed DNS flaw. A few days later, I got a reply
    like this:

    At this time we have made no changes to our network and we do not plan to
    make any changes. We actively monitor out network for any security breaches.

    Shortly before I received the above reply from my ISP, I used DNS check
    tools from doxpara.com. It says that it's safe (a few days earlier, the
    report said that my DNS was vulnerable to cache poisoning). I appears to me
    that my ISP has fixed the problem but a reply from my ISP says otherwise
    ("we do not plan to make any changes"). Clueless tech support.
     
    John, Jul 30, 2008
    #22
    1. Advertisements

  3. Kayman

    Kayman Guest

    Yes, I would think that your ISP has fixed (or is fixing) the problem. The
    ("clueless tech support") is probably a temp who may not be versed
    technically :)

    Good luck
     
    Kayman, Jul 31, 2008
    #23
  4. Me neither, Dave. I understood me perfectly. :eek:)
     
    FromTheRafters, Jul 31, 2008
    #24
  5. From: "FromTheRafters" <>



    | Me neither, Dave. I understood me perfectly. :eek:)

    Well he's a MVP in "Windows Server - Directory Services" not in "Security".
     
    David H. Lipman, Jul 31, 2008
    #25
  6. Kayman

    Lon Guest

    Only if you have no idea how to check the link or use an operating
    system.
     
    Lon, Aug 1, 2008
    #26
  7. Kayman

    ~BD~ Guest

    This was my result:
    DNS Resolver(s) Tested:
    1.. 195.93.61.21 (dns-frr01.proxy.aol.com) appears to have GREAT source
    port randomness and GREAT transaction ID randomness.
    Test time: 2008-08-02 07:42:41 UTC



    So AOL isn't *all* bad, eh? <wink>

    Dave
     
    ~BD~, Aug 2, 2008
    #27
  8. Kayman

    ~BD~ Guest

    Ahhh - but wait!

    I've tried again today - but this time I didn't use my AOL browser, simply
    Internet Explorer.This was the result:
    DNS Resolver(s) Tested:
    1.. 4.68.25.1 appears to have GOOD source port randomness and GREAT
    transaction ID randomness.
    2.. 4.68.25.3 appears to have GOOD source port randomness and GREAT
    transaction ID randomness.
    Test time: 2008-08-05 17:49:47 UTC

    Note that standard deviation is usually, but not always, a good indicator of
    randomness. Your brain is a better detector of randomness, so be sure to
    take a look at the scatter plots below. If you see patterns (such as
    straight lines), the values are probably less random than reported.

    ******************************

    Please will someone explain why my IP address is so different, just because
    I used a different browser for the check? TIA

    Dave
     
    ~BD~, Aug 5, 2008
    #28
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.