theravyn.org— Watch the Video from Call For Help when Leo talks to Steve Gibson about how to take down the entire Internet due to the weak and vulnerable DNS system and root servers. This is an amazing segment!
Sep 13, 2005View in Crawl 4
That depends on how active your ISP's name server is jasqwerty. Also it depends on how popular a site is as well. If it doesn't already have an entry cached it has to start some where to get the infromation. This is normally the root DNS server it will query to figure out where to start to get the infromation.See:<a class="user" href="http://lumphammer.net/network/dnstrace?domain=microsoft.co.uk">http://lumphammer.net/network/dnstrace?domain=microsoft.co.uk</a>No matter what the the TLD is you start at 198.41.0.4 (or one of the other root server).whois -h whois.arin.net 198.41.0.4boom.. VeriSign is running most of the root name servers. Not all of them but a good amount.
Who wants to tell him that there are many more than 13 DNS servers in the world? There are 13 big ones in the US but tons of smaller ones and foregin ones. It's not as easy as he makes it sound. It's not totally secure but if you were to add more DNS servers it would be better.Plus if something like that was to happen everyone would know and ISP's could just keep their cached copies till it was over.
(Assuming this is possible - which I personally don't have the knowledge to confirm or deny.) No. It might not be in a hackers best interest to do this. But...it could sure serve the interest of say, Al Qaeda.
The real haxxxor-teh-gibson plot would be to poison the DNS tables in the 13 main systems so that visitors to .... say, the top financial sites are redirected to a pharming mirror, then take down as many of the second-layer servers as possible. While a random update schedule would be hard to predict & slow to spread the altered data, a forced reboot would jump-start the cascade & cause many of the secondary servers to check the integrity of their tables against the data from the primaries. It wouldn't kill the Internet, but the further down the bad data got, the more disruptions people would notice.
djrbxSep 13, 2005
Of course this is in theory
muzzteinSep 13, 2005
I DIGG
silverbaxSep 13, 2005
Call For Help has been on in the US for at least six years.
fatb0bSep 13, 2005
Steve Gibson is a douchebag. He may be one of the smarter douchebag's out there, but never the less... he's a douchebag.
thegooseyoneSep 13, 2005
can anyone make a torrent of this....its going at 4k/sthanks digg :P
socketSep 13, 2005
That depends on how active your ISP's name server is jasqwerty. Also it depends on how popular a site is as well. If it doesn't already have an entry cached it has to start some where to get the infromation. This is normally the root DNS server it will query to figure out where to start to get the infromation.See:<a class="user" href="http://lumphammer.net/network/dnstrace?domain=microsoft.co.uk">http://lumphammer.net/network/dnstrace?domain=microsoft.co.uk</a>No matter what the the TLD is you start at 198.41.0.4 (or one of the other root server).whois -h whois.arin.net 198.41.0.4boom.. VeriSign is running most of the root name servers. Not all of them but a good amount.
pcguy112887Sep 13, 2005
Who wants to tell him that there are many more than 13 DNS servers in the world? There are 13 big ones in the US but tons of smaller ones and foregin ones. It's not as easy as he makes it sound. It's not totally secure but if you were to add more DNS servers it would be better.Plus if something like that was to happen everyone would know and ISP's could just keep their cached copies till it was over.
kobsSep 14, 2005
Yes, since we all know that networks use DNS to route packets.
shanmacSep 14, 2005
Steve Gibson is paranoid and needs some help. That being said, so am I, and so I feed off his stuff. Pray for me!
anunfounddoorSep 18, 2005
(Assuming this is possible - which I personally don't have the knowledge to confirm or deny.) No. It might not be in a hackers best interest to do this. But...it could sure serve the interest of say, Al Qaeda.
phadeSep 19, 2005
www.grcsucks.comSteve Gibson is a tool.
wintermute0Sep 22, 2005
The real haxxxor-teh-gibson plot would be to poison the DNS tables in the 13 main systems so that visitors to .... say, the top financial sites are redirected to a pharming mirror, then take down as many of the second-layer servers as possible. While a random update schedule would be hard to predict & slow to spread the altered data, a forced reboot would jump-start the cascade & cause many of the secondary servers to check the integrity of their tables against the data from the primaries. It wouldn't kill the Internet, but the further down the bad data got, the more disruptions people would notice.