[FoRK] Poisoned DNS on the increase
Udhay Shankar N
<udhay at pobox.com> on
Mon Feb 18 00:47:58 PST 2008
Lucas Gonze wrote, [on 2/18/2008 2:00 PM]:
> Doesn't DNS poisoning require the poisoner to have enough control over
> the victim machine to modify the network settings, aka root? At that
> point the attacker can do whatever they want, and the DNS part of
> things is just an insult to add to the injury.
* (having a poisoned DNS server + trojans to change settings on victim
machines) could get you, for example, access to a victim's banking
transactions.
* if you're running an open wireless AP with poisoned DNS servers, you
don't even need control of the victim's box.
Udhay
--
((Udhay Shankar N)) ((udhay @ pobox.com)) ((www.digeratus.com))
More information about the FoRK
mailing list