Blog entries for "security"

Sign up now to learn how Security Information Exchange (SIE) & Passive DNS are changing the way investigators are effectively collaborating.

17 Mar 2011
Robert Edmonds, Eric Ziegast, Barry Greene

The Security Information Exchange (SIE) and ISC’s Passive DNS System (DNSDB) are public benefit projects that are contributing to a shift in the way security companies work with each other.

Please sign up now for one of two webinars on March 29th, 2011 (click here). 

In this webinar, we will:

Join The Global Passive DNS (pDNS) Network Today & Gain Effective Tools To Fight Against Cyber Crime

03 Dec 2010
Robert Edmonds, Eric Ziegast, Barry Greene

Why contribute passive DNS data to ISC?

 
ISC - the Public Benefit Company that works to sustain the spirit of the Internet - is expanding the capacity of our Passive DNS System. Passive DNS provides the industry greater insight into how the cyber-criminals are using DNS to violate the Internet. 

Standardizing the Severity of Security Vulnerabilities

18 Oct 2010
Larissa Shapiro, ISC Product Manager

ISC has recently become aware of a security advisory, CVE-2010-3762 filed against BIND 9 on October 5th 2010. ISC did not request this CVE, nor was it contacted by the submitter prior to its submission.

We believe the reported severity assessment of this CVE to be higher than is realistic. Specifically, because a recursive operator needs to have configured a specific zone to be trusted via adding a trust-anchor statement for it, we believe the impact of this vulnerability to be low.

Using the root DNSSEC key in BIND 9 resolvers

16 Jul 2010
Michael Graff

To use the signed root zone in DNSSEC validation in your BIND 9 resolvers, you must be running BIND 9.6.2 or higher. Earlier versions do not support the required algorithms to enable validation using the root zone's key. It is strongly recommended you run BIND 9.7 to use the automatic key updating functionality.