Robby Pedrica's Tech Blog

Tag: security

  • DNS Issues

    by

    Robby Pedrica
    in

    Dan Kaminsky previewed information relating to possibly the worst DNS-related exploit ever, earlier this month. The issue is a cache poisoning vulnerability and can result in DNS answers containing fiddled information. This is actually a general design issue more than any vendor-specific issue. Imagine entering a url in your browser and been taken to another…

  • Security ( or not )

    by

    Robby Pedrica
    in

    It’s quite interesting that out of the 30 or so contacts I sent information to about the vmsplice issue, only one person came back to me requesting their kernel be updated. This is unfortunately the reality of security these days – with more to lose, people have less concern about security.

  • Linux kernel vmsplice vulnerability

    by

    Robby Pedrica
    in

    The recent vulnerability in the linux kernel pertaining to the vmsplice function has resulted in quite a hole in many Linux PCs all over the world. It is recommended to updated to 2.6.24.2 immediately to close this loop hole. Please note that to successfully exploit this bug, you need to have at minimum unprivileged local…