$ date
Wed Jul 23 23:06:22 EDT 2008
$ dig @24.25.5.148 +short porttest.dns-oarc.net TXT
z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net.
"24.25.5.150 is POOR: 26 queries in 2.4 seconds from 1 ports with std dev 0.00"
$ dig @24.25.5.147 +short porttest.dns-oarc.net TXT
z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net.
"24.25.5.150 is POOR: 26 queries in 2.4 seconds from 1 ports with std dev 0.00"
So please use OpenDNS's 208.67.222.222 and 208.67.220.220
To easily check if the DNS server you're using is vulnerable, you can use Dan Kaminsky's DNS checker tool (right-side of the page).
Please spread the word to the masses.
If you don't know how to fix this, please consult your local neighborhood geek (point her/him to this blog post).
The easiest way to change it is to let your router/firewall assign OpenDNS servers by DHCP instead of using whatever was given by the ISP.
The other way is to statically assign them on each laptop/desktop.
UPDATE: As of July 25, 7:30pm Eastern, it looks like Road Runner has fixed their DNS servers (at least the ones referenced in this post).
0 comments:
Post a Comment