16 Feb
2007
16 Feb
'07
1:57 p.m.
On Fri, Feb 16, 2007 at 12:07:45PM +0100, Yuri Demchenko <demch@chello.nl> wrote a message of 110 lines which said:
What does DNSSEC and Techsec-WG people think about recently revealed pharming attack technique that is based on the end user DNS altering?
I really wonder why do all newspapers present it as a DNS attack. It is an attack against a server (the home router). Once you control it, you can do many things besides changing the DNS configuration (such as setting up a tunnel and diverting all IP data through it, so DNSSEC would be screwed, anyway).
On the practical note, I need to say something definite to my students what DNS experts think?
As I said, the DNS is not involved at all in this attack.