DNS Randomness Test

  • Thread starter Thread starter Kayman
  • Start date Start date
Thanks Kayman. I use (my ISP) DNS IP addresses as forwarders on my Windows
DNS system. I guess what I can do is change the forwarders IP addresses to
the ones that have been detected as GOOD.

Btw, http://www.dnsstuff.com/ has a DNS vulnerability check too. Also, if
you haven't heard, check this out:
http://www.networkworld.com/news/2008/073008-dns-attack-writer-a-victim.html


Contact our ISP? That's a scary thought. I sent them an email last week,
asking them if they have fixed DNS flaw. A few days later, I got a reply
like this:

At this time we have made no changes to our network and we do not plan to
make any changes. We actively monitor out network for any security breaches.

Shortly before I received the above reply from my ISP, I used DNS check
tools from doxpara.com. It says that it's safe (a few days earlier, the
report said that my DNS was vulnerable to cache poisoning). I appears to me
that my ISP has fixed the problem but a reply from my ISP says otherwise
("we do not plan to make any changes"). Clueless tech support.

Yes, I would think that your ISP has fixed (or is fixing) the problem. The
("clueless tech support") is probably a temp who may not be versed
technically :)

Good luck
 
David H. Lipman said:
From: "Hank Arnold (MVP)" <[email protected]>


| You know, I have yet to see a single posting from you that makes any
| sense..... Welcome to the Kill File (along with this thread.......)....

| --

| Regards,
| Hank Arnold
| Microsoft MVP
| Windows Server - Directory Services

I don't understand where this came from ???

Me neither, Dave. I understood me perfectly. :o)
 
This was my result:
DNS Resolver(s) Tested:
1.. 195.93.61.21 (dns-frr01.proxy.aol.com) appears to have GREAT source
port randomness and GREAT transaction ID randomness.
Test time: 2008-08-02 07:42:41 UTC



So AOL isn't *all* bad, eh? <wink>

Dave
 
~BD~ said:
This was my result:
DNS Resolver(s) Tested:
1.. 195.93.61.21 (dns-frr01.proxy.aol.com) appears to have GREAT source
port randomness and GREAT transaction ID randomness.
Test time: 2008-08-02 07:42:41 UTC



So AOL isn't *all* bad, eh? <wink>

Dave

Ahhh - but wait!

I've tried again today - but this time I didn't use my AOL browser, simply
Internet Explorer.This was the result:
DNS Resolver(s) Tested:
1.. 4.68.25.1 appears to have GOOD source port randomness and GREAT
transaction ID randomness.
2.. 4.68.25.3 appears to have GOOD source port randomness and GREAT
transaction ID randomness.
Test time: 2008-08-05 17:49:47 UTC

Note that standard deviation is usually, but not always, a good indicator of
randomness. Your brain is a better detector of randomness, so be sure to
take a look at the scatter plots below. If you see patterns (such as
straight lines), the values are probably less random than reported.

******************************

Please will someone explain why my IP address is so different, just because
I used a different browser for the check? TIA

Dave
 
Back
Top