Half of DNS servers vulnerable to attack

By Colin Barker, ZDNet UK
Wednesday, November 21, 2007 09:52 AM

The security of DNS continues to be an issue for network administrators, despite the availability of more secure DNS servers such as BIND 9, according to a survey released on Monday by network appliance company, Infoblox.

According to the survey, DNS (Domain Name System) infrastructure is modernizing and coalescing around the most recent versions of BIND--a type of DNS server software. However, a problem Infoblox noted was that over 50 percent of DNS servers still allow recursion and zone transfers, "indicating that the global DNS system is as vulnerable as ever". Recursion can leave DNS systems vulnerable to DNS cache poisoning and amplification attacks that can "bring down major networks", said Infoblox.

The survey, conducted over the past three years, found the DNS system is growing overall, which is an indicator of internet growth in general.

At the same time, the use of BIND 9 DNS server code is increasing more quickly than other varieties of DNS server code. Infoblox considers BIND 9 more secure than older versions of BIND, as it "has a substantially better security track record ", according to Cricket Liu, Infoblox vice president of architecture.

Meanwhile, Microsoft DNS Server, which Infoblox considers a less secure type of DNS server code, has charted a continual rapid decline for three years. "Microsoft DNS Server's [market] share continued its dramatic decline, from about 4.6 percent to 2.7 percent," wrote Liu. "Perhaps this is because administrators have become warier of exposing the Microsoft DNS Server and Windows operating systems directly to the internet."

Microsoft DNS Server market share fell from 10 percent in 2005, to 4.6 percent in 2006, then to 2.7 percent in 2007, according to the survey. Infoblox said that its decreased use was a positive step.

The survey was based on a sample that included 5 percent of the IPv4 address space--nearly 80 million addresses.

0

0 votes

Save to My Library

Talkback 0 comments

There are currently no comments for this post.

Guest user

Tech Jobs Now!

TechGuides

Whiteboard
News and Interviews
Specials

The benefits of blade servers
Richard George of Intel's server product group explains the benefits of blade servers for companies that are struggling with everything from proliferation of cabling and applications to pressures on staffing.
Play video
Simplifying your PC Client Management
Need to cut down time wasted on deskside support? View this video to learn how HP can simplify your PC Client Management system.
Play video

3D modeling on cell phones
Sun demos Java app for next generation phones with Nvidia chip
Play video
The Green Enterprise: Intel
From chips to fabs, going green inside Intel
Play video

Hospital of the future
IT is breaking down barriers to better patient care like never before.
Play video
Chinese PC market outlook
With a population of 1.3 billion, China is a haven for tech marketers.
Play video